Description
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via a -o-link attribute.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2000-0167)
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5501)
WordPress Plugin Realia Security Bypass (1.4.0)
WordPress Plugin Splashing Images Multiple Vulnerabilities (2.1)
ReviveAdserver Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2021-22948)