Vulnerability CVE-2024-47847
Published: 2024-10-05

Description:
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.

 References:
https://phabricator.wikimedia.org/T372211
https://phabricator.wikimedia.org/T368628
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/1063804
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/1063806
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/1063827
https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Cargo/+/1063831
Copyright 2026, cxsecurity.com

 

Back to Top