We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1.
Reserved 2024-10-03 | Published 2024-10-05 | Updated 2024-10-07 | Assigner wikimedia-foundationCWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Yaron_Koren
BlankEclair
phabricator.wikimedia.org/T372211
phabricator.wikimedia.org/T368628
gerrit.wikimedia.org/...mediawiki/extensions/Cargo/+/1063804
gerrit.wikimedia.org/...mediawiki/extensions/Cargo/+/1063806
gerrit.wikimedia.org/...mediawiki/extensions/Cargo/+/1063827
gerrit.wikimedia.org/...mediawiki/extensions/Cargo/+/1063831
Support options