CVE-2022-29907

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions MediaWiki Nimbus skin versions through 1.37.2

Description The issue allows XSS in Advertise link messages.

Recommendations For MediaWiki Nimbus skin versions through 1.37.2, update to a version after 6f9c8fb868345701d9544a54d9752515aace39df to resolve the issue.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

ALT-PU-2022-3361

ALT-PU-2024-11168

ALT-PU-2024-1228

BIT-MEDIAWIKI-2022-29907

CVE-2022-29907

Affected Products

Alt Linux

Mediawiki Nimbus Skin

CVE-2022-29907

Weakness Enumeration

Related Identifiers

Affected Products

References · 7