VYPR

GlobalWatchlist

by MediaWiki

CVEs (1)

  • CVE-2021-42046Oct 6, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the GlobalWatchlist extension in MediaWiki through 1.36.2. The rev-deleted-user and ntimes messages were not properly escaped and allowed for users to inject HTML and JavaScript.