Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-45360


An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers.


Published

2023-11-03T05:15:30.730

Last Modified

2024-11-21T08:26:48.780

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.4 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-79
  • Type: Secondary
    CWE-79

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application mediawiki mediawiki < 1.35.12 Yes
Application mediawiki mediawiki < 1.39.5 Yes
Application mediawiki mediawiki 1.40.0 Yes
Application mediawiki mediawiki 1.40.0 Yes

References