Description
resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-4609 | resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page. |
Github GHSA |
GHSA-mqhw-wq8p-vf5r | MediaWiki Open Redirect vulnerability |
References
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T11:21:14.656Z
Reserved: 2020-03-25T00:00:00.000Z
Link: CVE-2020-10959
No data.
Status : Modified
Published: 2020-06-02T14:15:10.507
Modified: 2026-06-17T02:48:45.160
Link: CVE-2020-10959
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-601
URL Redirection to Untrusted Site ('Open Redirect')
EUVD
Github GHSA