CVE-2021-42048

Published: Oct 6, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

An issue was discovered in the Growth extension in MediaWiki through 1.36.2. Any admin can add arbitrary JavaScript code to the Newcomer home page footer, which can be executed by viewers with zero edits.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://phabricator.wikimedia.org/T289064

x_refsource_MISC

https://gerrit.wikimedia.org/r/q/Iaa90a8976834d70caad592e9d1b18510318db537

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-42048

Description

Affected Products

References