Unrated severityNVD Advisory· Published Jun 26, 2023· Updated Dec 5, 2024
CVE-2023-36675
CVE-2023-36675
Description
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
6- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2UIVGYECQGTUC2LLPVCZBPDLCTOHL2F6/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6CHRX6DSLAMVXCV2YMJEWOLTBEYSESE5/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DOAXEGYBOEM4JWB4J3BDH73NK2LCYC3O/mitrevendor-advisory
- www.debian.org/security/2023/dsa-5447mitrevendor-advisory
- phabricator.wikimedia.org/T332889mitre
- www.mediawiki.org/wiki/Release_notes/1.40mitre
News mentions
0No linked articles in our index yet.