Critical severity9.8NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026
CVE-2017-0372
CVE-2017-0372
Description
Parameters injection in the SyntaxHighlight extension of Mediawiki before 1.23.16, 1.27.3 and 1.28.2 might result in multiple vulnerabilities.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <1.23.16, <1.27.3, <1.28.2
- mediawiki/mediawiki (SyntaxHighlight extension)v5Range: n/a
Patches
Vulnerability mechanics
References
5- lists.wikimedia.org/pipermail/mediawiki-announce/2017-April/000207.htmlnvdPatchRelease NotesVendor Advisory
- lists.wikimedia.org/pipermail/mediawiki-announce/2017-April/000209.htmlnvdPatchRelease NotesVendor Advisory
- phabricator.wikimedia.org/T158689nvdExploitThird Party Advisory
- bugs.debian.org/861585nvdThird Party Advisory
- security-tracker.debian.org/tracker/CVE-2017-0372nvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.