CVE-2023-45359 | Vector Skin up to 1.39.4/1.40.0 on MediaWiki Vector-toc-toggle-button-label escape output

Inserito da Angelo Barbosa | Ott 9, 2024 | CVE

A vulnerability was found in Vector Skin up to 1.39.4/1.40.0 on MediaWiki. It has been classified as problematic. Affected is an unknown function. The manipulation of the argument Vector-toc-toggle-button-label leads to escaping of output.

This vulnerability is traded as CVE-2023-45359. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-45359 | Vector Skin up to 1.39.4/1.40.0 on MediaWiki Vector-toc-toggle-button-label escape output

Post correlati

CVE-2024-7753 | SourceCodester Clinics Patient Management System 1.0 /user_images/ direct request

CVE-2024-2621 | Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 pwd_update.php uuid sql injection

CVE-2024-28961 | Dell OpenManage Enterprise 4.0.0/4.0.1 credentials storage (dsa-2024-184)

CVE-2024-42791 | Kashipara Music Management System 1.0 ajax.php cross-site request forgery