MediaWiki Cross-site Scripting

MediaWiki Cross-site Scripting Vulnerabilities. Date: 18/02/2007 Vendor: MediaWiki Vulnerable versions: MediaWiki 1.9.2 (latest) and below. Description: MediaWiki v1.8.2 and below are vulnerable to plain Cross-site scripting attack by expliting the experimental AJAX features, if enabled

[ GLSA 200604-01 ] MediaWiki: Cross-site scripting vulnerability

/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Low Title: MediaWiki: Cross-site scripting vulnerability Date: April 04, 2006 Bugs: #127971 ID: 200604-01 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis