CVE-2013-4305

Publication date

2013-10-11 21:00:00

Family

redhat

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in contrib/example.php in the SyntaxHighlight GeSHi extension for MediaWiki, possibly as downloaded before September 2013, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.