5May
CVE-2024-34507 | MediaWiki up to 1.39.6/1.40.2/1.41.0 CommentParser.php cross site scripting
A vulnerability classified as problematic has been found in MediaWiki up to 1.39.6/1.40.2/1.41.0. This affects an unknown part of the file includes/CommentFormatter/CommentParser.php. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-34507. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.