CVE-2020-25812 — Cross-site Scripting in Mediawiki

CWE-79 — Cross-site Scripting6 documents5 sources

Severity

6.1MEDIUMNVD

EPSS

0.4%

top 41.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mediawiki Mediawiki Core Debian Mediawiki +1 more

Timeline

PublishedSep 27

Latest updateMay 24

Description

An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributions, the NS filter uses unescaped messages as keys in the option key for an HTMLForm specifier. This is vulnerable to a mild XSS if one of those messages is changed to include raw HTML.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages4 packages

▶Packagistmediawiki/core1.34.0 — 1.34.3+1

▶debiandebian/mediawiki< mediawiki 1:1.35.0-1 (bookworm)

▶NVDmediawiki/mediawiki1.34.0 — 1.34.4

▶Debianmediawiki/mediawiki< 1:1.35.0-1+3

Also affects: Fedora 33

🔴Vulnerability Details

GHSA

MediaWiki Cross-site Scripting (XSS) vulnerability↗2022-05-24

▶

OSV

MediaWiki Cross-site Scripting (XSS) vulnerability↗2022-05-24

▶

OSV

CVE-2020-25812: An issue was discovered in MediaWiki 1↗2020-09-27

▶

📋Vendor Advisories

Red Hat

mediawiki: XSS using raw HTML↗2020-09-27

▶

Debian

CVE-2020-25812: mediawiki - An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributi...↗2020

▶