CVE-2024-25107 | miraheze WikiDiscover Special:WikiDiscover Language::date cross site scripting (GHSA-cfcf-94jv-455f)

Posted by Angelo Barbosa | Feb 9, 2024 | CVE

A vulnerability was found in miraheze WikiDiscover and classified as problematic. Affected by this issue is the function Language::date of the file Special:WikiDiscover. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-25107. The attack may be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-25107 | miraheze WikiDiscover Special:WikiDiscover Language::date cross site scripting (GHSA-cfcf-94jv-455f)

Related Posts

CVE-2023-38520 | Pinpoint Booking System Plugin up to 2.9.9.3.4 on WordPress unknown vulnerability

CVE-2024-8253 | Post Grid and Gutenberg Blocks Plugin 2.2.87/2.2.88/2.2.89/2.2.90 on WordPress Privilege Escalation

CVE-2024-48778 | GIANT MANUFACTURING RideLink 2.0.7 Firmware Update information disclosure

CVE-2024-36972 | Linux Kernel prior 6.10-rc1 af_unix __unix_gc null pointer dereference (9841991a446c)