CVE-2020-25815

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions MediaWiki versions 1.32.x through 1.34.x before 1.34.4

Description An issue was discovered where the LogEventList::getFiltersDesc function is insecurely using message text to build options names for an HTML multi-select field. The relevant code should use escaped() instead of text().

Recommendations For MediaWiki versions 1.32.x through 1.34.x before 1.34.4, update to version 1.34.4 or later to resolve the issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALT-PU-2020-3022

ALT-PU-2020-3055

BIT-MEDIAWIKI-2020-25815

CVE-2020-25815

DSA-4767-1

GHSA-2F58-VF6G-6P8X

MGASA-2020-0381

Affected Products

Alt Linux

Mediawiki

CVE-2020-25815

Weakness Enumeration

Related Identifiers

Affected Products

References · 25