Unrated severityNVD Advisory· Published Feb 21, 2007· Updated Jun 16, 2026
CVE-2007-1055
CVE-2007-1055
Description
Cross-site scripting (XSS) vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2, and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6- securityreason.com/securityalert/2274nvdExploitThird Party Advisory
- svn.wikimedia.org/svnroot/mediawiki/tags/REL1_9_0/phase3/RELEASE-NOTESnvdThird Party Advisory
- www.bugsec.com/articles.phpnvdBroken LinkThird Party Advisory
- www.securityfocus.com/archive/1/460596/100/0/threadednvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/32586nvdThird Party AdvisoryVDB Entry
- osvdb.org/37343nvdBroken Link
News mentions
0No linked articles in our index yet.