Lucene search
Veracode Vulnerability DatabaseVERACODE:28645HistoryDec 19, 2020 - 1:34 a.m.
Cross-site Scripting (XSS)
2020-12-1901:34:51
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
mediawiki
cross-site scripting
xss
vulnerability
language::translateblockexpiry
EPSS
0.002
Percentile
59.2%
mediawiki is vulnerable to cross-site scripting (XSS). The vulnerability exists as Language::translateBlockExpiry itself does not escape in all code paths.
References
lists.debian.org/debian-lts-announce/2020/12/msg00034.html
lists.fedoraproject.org/archives/list/[email protected]/message/STT5Z4A3BCXVH3WIPICWU2FP4IPIMUPC/
lists.wikimedia.org/pipermail/mediawiki-announce/2020-December/000268.html
phabricator.wikimedia.org/T268938
security-tracker.debian.org/tracker/CVE-2020-35479
www.debian.org/security/2020/dsa-4816
Related
ubuntucve
ubuntucve
CVE-2020-35479
2020-12-18 00:00:00
redhatcve
redhatcve
CVE-2020-35479
2020-12-18 17:40:29
osv
osv
BIT-mediawiki-2020-35479
2024-03-06 11:13:23
CVE-2020-35479
2020-12-18 08:15:15
mediawiki - security update
2020-12-22 00:00:00
nvd
nvd
CVE-2020-35479
2020-12-18 08:15:15
debiancve
debiancve
CVE-2020-35479
2020-12-18 08:15:15
cve
cve
CVE-2020-35479
2020-12-18 08:15:15
prion
prion
Design/Logic Flaw
2020-12-18 08:15:00
cvelist
cvelist
CVE-2020-35479
2020-12-18 07:42:25
openvas
openvas
Debian: Security Advisory (DSA-4816-1)
2020-12-19 00:00:00
Debian: Security Advisory (DLA-2504-1)
2020-12-23 00:00:00
Mageia: Security Advisory (MGASA-2021-0086)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DLA 2504-1] mediawiki security update
2020-12-23 01:38:47
[SECURITY] [DSA 4816-1] mediawiki security update
2020-12-18 09:46:46
nessus
nessus
Debian DSA-4816-1 : mediawiki - security update
2020-12-21 00:00:00
Debian DLA-2504-1 : mediawiki security update
2020-12-23 00:00:00
Fedora 33 : mediawiki (2020-0be2d40e13)
2020-12-28 00:00:00
mageia
mageia
Updated mediawiki packages fix security vulnerability
2021-02-19 13:27:54
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.35.1-alt1
2020-12-30 00:00:00
archlinux
archlinux
[ASA-202101-22] mediawiki: multiple issues
2021-01-12 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: mediawiki-1.35.1-1.fc33
2020-12-27 01:41:09