Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in WikiWorks Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7.
| Vendor | Product | Versions |
|---|---|---|
| wikimedia foundation | mediawiki - cargo extension | 0 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| open source | mediawiki | cert_advisory | 90% |
Updated severity to HIGH, added CVSS estimate of 7.5, and corrected exploit availability status.
Initial creation
