Security Advisory

CVE-2023-37255

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-06-29 00:00:00

Last updated 2024-11-26 19:36:50

Assigner mitre

State PUBLISHED

Description

An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In Special:CheckUser, a check of the "get edits" type is vulnerable to HTML injection through the User-Agent HTTP request header.

← Browse all CVEs View on cve.org ↗