CVE-2020-6163
The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.mustache+dom file).
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
mediawiki | mediawiki | 1.35 |
Common Weakness Enumeration