Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.19, 1.22.x before 1.22.11, and 1.23.x before 1.23.4 allows remote attackers to inject arbitrary web script or HTML via a crafted SVG file.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2014-09-30T14:00:00
Updated: 2024-08-06T12:40:19.157Z
Reserved: 2014-09-26T00:00:00
Link: CVE-2014-7199

No data.

Status : Modified
Published: 2014-09-30T14:55:11.827
Modified: 2024-11-21T02:16:31.300
Link: CVE-2014-7199

No data.