RSS   Vulnerabilities for 'Rss for mediawiki'   RSS

2022-05-02
 
CVE-2022-29969

CWE-79
 

 
The RSS extension before 2022-04-29 for MediaWiki allows XSS via an rss element (if the feed is in $wgRSSUrlWhitelist and $wgRSSAllowLinkTag is true).

 

 >>> Vendor: Mediawiki 12 Products
Mediawiki
Rssreader
Mediawiki botquery ext
Mediawik
Checkuser
Scribunto
Abusefilter
Visual editor
Mobilefrontend
Skin\
Shortdescription
Rss for mediawiki


Copyright 2024, cxsecurity.com

 

Back to Top