CVE-2021-42048 - CERT CVE
ID CVE-2021-42048
Sažetak An issue was discovered in the Growth extension in MediaWiki through 1.36.2. Any admin can add arbitrary JavaScript code to the Newcomer home page footer, which can be executed by viewers with zero edits.
Reference
CVSS
Base: 4.8
Impact: 2.7
Exploitability:1.7
Pristup
VektorSloženostAutentikacija
NETWORK LOW -
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Zadnje važnije ažuriranje 30-09-2022 - 16:42
Objavljeno 29-09-2022 - 03:15