An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.
History

Thu, 05 Dec 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-06-26T00:00:00

Updated: 2024-12-05T15:25:03.755Z

Reserved: 2023-06-26T00:00:00

Link: CVE-2023-36675

cve-icon Vulnrichment

Updated: 2024-08-02T16:52:54.186Z

cve-icon NVD

Status : Modified

Published: 2023-06-26T01:15:09.203

Modified: 2024-11-21T08:10:19.743

Link: CVE-2023-36675

cve-icon Redhat

Severity : Low

Publid Date: 2023-06-26T00:00:00Z

Links: CVE-2023-36675 - Bugzilla