CVE-2005-3165
EPSS 0.27%發布日:2005/10/6修改日:2026/4/28
也稱為:DEBIAN-CVE-2005-3165
描述
Multiple cross-site scripting (XSS) vulnerabilities in MediaWiki before 1.4.9 allow remote attackers to inject arbitrary web script or HTML via (1) <math> tags or (2) Extension or <nowiki> sections that "bypass HTML style attribute restrictions" that are intended to protect against XSS vulnerabilities in Internet Explorer clients.
受影響套件(1)
- Debian/mediawikifrom 0, < 1.4.9