Description
Cross-site scripting (XSS) vulnerability in mediawiki.page.image.pagination.js in MediaWiki 1.22.x before 1.22.9 and 1.23.x before 1.23.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving the multipageimagenavbox class in conjunction with an action=raw value.
Remediation
References
Related Vulnerabilities
WordPress Plugin Event Notifier Cross-Site Scripting (1.2.0)
WordPress Plugin Sunshine Photo Cart Cross-Site Request Forgery (2.8.28)
Oracle Database Server CVE-2012-1751 Vulnerability (CVE-2012-1751)
WordPress Plugin Essential Addons for Elementor Security Bypass (5.7.1)
WordPress Plugin Portfolio Responsive Gallery SQL Injection (1.1.7)