Cross-Site Scripting in the extensions, settings, permissions and namespaces subpages of Special:ManageWiki

Moderate

redbluegreenhat published GHSA-4jr2-jhfm-2r84

Feb 9, 2024

Package

ManageWiki (MediaWiki Extension)

Affected versions

All before 886cc6b94587f1c7387caa26ca9fe612e01836a0

Patched versions

Fully fixed in 6942e8b2c01dc33c2c41a471f91ef3f6ca726073

Description

Impact

Special:ManageWiki does not escape interface messages on the columns and help keys on the form descriptor.

Exploiting this on-wiki requires the (editinterface) right.

Patches

All of these must be applied in order to fully fix this vulnerability

Workarounds

None

References

https://issue-tracker.miraheze.org/T11812

For more information

If you have any questions or comments about this advisory:

Open an issue on our issue tracker
Email us at security{{@}}miraheze.org

Severity

Moderate

6.5

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

High

User interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N