Cross-site scripting (XSS) vulnerability in MediaWiki 1.6.0 up to versions before 1.6.7 allows remote attackers to inject arbitrary HTML and web script via the edit form.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mediawiki | Mediawiki | 1.6.3 | 1.6.3 |
Mediawiki | Mediawiki | 1.6.2 | 1.6.2 |
Mediawiki | Mediawiki | 1.6.5 | 1.6.5 |
Mediawiki | Mediawiki | 1.6.6 | 1.6.6 |
Mediawiki | Mediawiki | 1.6.4 | 1.6.4 |
Mediawiki | Mediawiki | 1.6.5_r14348 | 1.6.5_r14348 |
Mediawiki | Mediawiki | 1.6.0 | 1.6.0 |
Mediawiki | Mediawiki | 1.6.1 | 1.6.1 |