An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XSS on Special:log/rights.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-12-22T00:00:00
Updated: 2024-09-26T15:03:05.216Z
Reserved: 2023-12-22T00:00:00
Link: CVE-2023-51704
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-22T02:15:42.957
Modified: 2024-06-10T17:16:16.423
Link: CVE-2023-51704
Redhat