The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.mustache+dom file).
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2020-01-08T01:45:12
Updated: 2024-08-04T08:55:22.285Z
Reserved: 2020-01-08T00:00:00
Link: CVE-2020-6163

No data.

Status : Modified
Published: 2020-01-08T02:15:10.553
Modified: 2024-11-21T05:35:13.310
Link: CVE-2020-6163

No data.