CVE-2020-35474

Name of the Vulnerable Software and Affected Versions MediaWiki versions prior to 1.35.1

Description The issue exists due to the lack of protection for the web page structure in MediaWiki, specifically with the combination of Html::rawElement and Message::text. This can be exploited by a remote attacker to conduct a cross-site scripting (XSS) attack. The vulnerability arises because the definition of MediaWiki:recentchanges-legend-watchlistexpiry can be changed onwiki, allowing the output to be raw HTML.

Recommendations For versions prior to 1.35.1, update to version 1.35.1 or later to resolve the issue. As a temporary workaround, consider restricting changes to the MediaWiki:recentchanges-legend-watchlistexpiry definition to prevent raw HTML output.