resources/src/mediawiki.page.ready/ready.js in MediaWiki prior to 1.35 allows remote malicious users to force a logout and external redirection via HTML content in a MediaWiki page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mediawiki mediawiki |