2019-12-11 01:33:31
mitre
PUBLISHED
The VisualEditor extension through 1.34 for MediaWiki allows XSS via pasted content containing an element with a data-ve-clipboard-key attribute.