CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2013-6452 — MEDIUM severity vulnerability | Release Alert
CVE-2013-6452
4.3
MEDIUMCVSS v2
Published
May 12, 2014
Affected
2 projects
Assigned by
Red Hat
Severity scale
010
Description
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via crafted XSL in an SVG file.
GitHub🌻 The collaborative editing software that runs Wikipedia. Mirror from https://gerrit.wikimedia.org/g/mediawiki/core. See https://mediawiki.org/wiki/Developer_access for contributing.