Unrated severityNVD Advisory· Published Dec 21, 2020· Updated Aug 4, 2024
CVE-2020-35622
CVE-2020-35622
Description
An issue was discovered in the GlobalUsage extension for MediaWiki through 1.35.1. SpecialGlobalUsage.php calls WikiMap::makeForeignLink unsafely. The $page variable within the formatItem function was not being properly escaped, allowing for XSS under certain conditions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- MediaWiki/GlobalUsagedescription
- Range: <=1.35.1
Patches
Vulnerability mechanics
References
2- gerrit.wikimedia.org/r/c/mediawiki/extensions/GlobalUsage/+/646744mitrex_refsource_MISC
- phabricator.wikimedia.org/T268341mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.