An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34.4. LogEventList::getFiltersDesc is insecurely using message text to build options names for an HTML multi-select field. The relevant code should use escaped() instead of text().
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| mediawiki/core(Packagist) | 1.32.0 | 1.34.3 | N/A |
| mediawiki/core(Packagist) | 1.35.0-rc.0 | 1.35.0 | N/A |
CVSS Metrics
