Unrated severityNVD Advisory· Published May 2, 2022· Updated Aug 3, 2024

CVE-2022-29969

Description

The RSS extension before 2022-04-29 for MediaWiki allows XSS via an rss element (if the feed is in $wgRSSUrlWhitelist and $wgRSSAllowLinkTag is true).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

MediaWiki/RSS extensiondescription
MediaWiki/RSSllm-create
Range: <2022-04-29

Patches

Vulnerability mechanics

References

gerrit.wikimedia.org/r/c/787807mitrex_refsource_MISC
phabricator.wikimedia.org/T307028mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000