Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
MediaWiki SVG cross-site scripting vulnerability - Vulnerability Database

MediaWiki SVG cross-site scripting vulnerability

Description

MediaWiki, the open-source wiki platform powering Wikipedia, contains a cross-site scripting (XSS) vulnerability in its SVG file handling mechanism. The vulnerability occurs when MediaWiki fails to properly sanitize encoded XML entities within SVG files, allowing attackers to embed malicious JavaScript code that executes when users view the SVG content. This affects MediaWiki installations that permit SVG file uploads and rendering.

Remediation

Take the following steps to remediate this vulnerability:

1. Upgrade MediaWiki immediately:
Update to MediaWiki version 1.24.2 or later, which includes fixes for this SVG XSS vulnerability. Download the latest stable release from the official MediaWiki website.

2. Review uploaded SVG files:
Audit existing SVG files in your MediaWiki installation for potentially malicious content, particularly those containing XML entities or embedded scripts.

3. Implement additional security controls:
• Configure Content Security Policy (CSP) headers to restrict script execution
• Consider disabling SVG uploads if not required for your use case
• Restrict file upload permissions to trusted users only
• Enable MediaWiki's built-in file upload restrictions in LocalSettings.php

4. Verify the fix:
After upgrading, test SVG file uploads with sample files containing script tags to confirm proper sanitization is occurring.

References

MediaWiki SVG XSS

Related Vulnerabilities

Adobe Coldfusion 8 multiple linked XSS vulnerabilies High
Common tags: XSS
WordPress Plugin Quick Chat Cross-Site Scripting (4.14) High
Common tags: XSS
WordPress Plugin WP Elegant Testimonial Cross-Site Scripting (1.1.6) High
Common tags: XSS
WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress Cross-Site Scripting (1.3.0) High
Common tags: XSS
WordPress Plugin WP smart CRM & Invoices FREE Cross-Site Scripting (1.8.7) High
Common tags: XSS

Severity

High

Classification

CWE-79
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

XSS