Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MediaWiki Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-1055 - Vulnerability Database
MediaWiki

MediaWiki Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-1055

Medium
Reference: CVE-2007-1055
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-1055
Title: MediaWiki Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

Cross-site scripting (XSS) vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2 and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177.