logo

Database

Reflected cross-site scripting (XSS) In mediawiki/core

Description

MediaWiki Cross-site Scripting (XSS) vulnerability In MediaWiki before 1.31.9 and 1.32.x through 1.34.x before 1.34.3, XSS related to jQuery can occur. The attacker creates a message with [javascript:payload xss] and turns it into a jQuery object with mw.message().parse(). The expected result is that the jQuery object does not contain an tag (or it does not have a href attribute, or it's empty, etc.). The actual result is that the object contains an <a href ="javascript... that executes when clicked.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2020-258142. NVD-2020-258143. OSV-2020-258144. OSV-DEBIAN-2020-258145. GCVE-2020-258146. SECURITY-TRACKER-CVE-2020-25814

References

1. https://github.com/FriendsOfPHP/security-advisories/blob/master/mediawiki/core/CVE-2020-25814.yaml2. https://lists.fedoraproject.org/archives/list/[email protected]/message/RTTPZ7XMDS66I442OLLHXBDNP2LCBJU63. https://lists.wikimedia.org/pipermail/mediawiki-l/2020-September/048480.html4. https://lists.wikimedia.org/pipermail/mediawiki-l/2020-September/048488.html5. https://phabricator.wikimedia.org/T867386. https://www.mediawiki.org/wiki/ResourceLoader/Core_modules#mediawiki.jqueryMsg

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.