CVE-2005-4501
EPSS 0.57%Published: 12/22/2005Modified: 4/28/2026
Also known as:DEBIAN-CVE-2005-4501
Description
MediaWiki before 1.5.4 uses a hard-coded "internal placeholder string", which allows remote attackers to bypass protection against cross-site scripting (XSS) attacks and execute Javascript using inline style attributes, which are processed by Internet Explorer.
Affected packages (1)
- Debian/mediawikifrom 0, < 1.4.13-1