Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CheckUser: Reflected Cross-Site Scripting (XSS) in Special:Investigate via unsanitized i18n messages
Vulnerability Description
The CheckUser extension’s Special:Investigate interface is vulnerable to reflected XSS due to improper escaping of certain internationalized system messages rendered on the “IPs and User agents” tab. This issue affects Mediawiki - CheckUser extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Wikimedia Mediawiki - CheckUser Extension 安全漏洞
Vulnerability Description
Wikimedia Mediawiki - CheckUser Extension是Wikimedia基金会的一个查询IP地址的扩展。 Wikimedia Mediawiki - CheckUser Extension 1.39.13之前版本、1.42.7之前版本和1.43.2之前版本存在安全漏洞,该漏洞源于国际化系统消息转义不当,可能导致反射型跨站脚本攻击。
CVSS Information
N/A
Vulnerability Type
N/A