Mediawiki: >> Rss For Mediawiki Security Vulnerabilities
The RSS extension before 2022-04-29 for MediaWiki allows XSS via an rss element (if the feed is in $wgRSSUrlWhitelist and $wgRSSAllowLinkTag is true).
CVSS Score
6.1
EPSS Score
0.003
Published
2022-05-02