CVE-2024-23179 | MediaWiki up to 1.40.1 GlobalBlocking Extension Special:GlobalBlock uselang cross site scripting

Inserito da Angelo Barbosa | Gen 12, 2024 | CVE

A vulnerability classified as problematic was found in MediaWiki up to 1.40.1. This vulnerability affects unknown code of the file Special:GlobalBlock of the component GlobalBlocking Extension. The manipulation of the argument uselang leads to cross site scripting.

This vulnerability was named CVE-2024-23179. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23179 | MediaWiki up to 1.40.1 GlobalBlocking Extension Special:GlobalBlock uselang cross site scripting

Post correlati

CVE-2024-36517 | Zoho ManageEngine ADAudit Plus up to 7999 Alerts Module sql injection

CVE-2024-24557 | Moby up to 24.0.8/25.0.1 /build origin validation (GHSA-xw73-rw38-6vjc)

CVE-2024-30283 | Adobe Framemaker up to 2020.5/2022.3 out-of-bounds (apsb24-37)

CVE-2024-30273 | Adobe Illustrator up to 27.9.2/28.3 stack-based overflow (apsb24-25)