Vulnerabilities > Mediawiki > Mobilefrontend > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-03-19 CVE-2019-15124 Cross-site Scripting vulnerability in Mediawiki Mobilefrontend 1.31.0/1.32.0/1.33.0
In the MobileFrontend extension for MediaWiki, XSS exists within the edit summary field of the watchlist feed.
network
low complexity
mediawiki CWE-79
6.1
6.1
2019-08-09 CVE-2019-14807 Cross-site Scripting vulnerability in Mediawiki Mobilefrontend 1.31.0/1.32.0/1.33.0
In the MobileFrontend extension 1.31 through 1.33 for MediaWiki, XSS exists within the edit summary field in includes/specials/MobileSpecialPageFeed.php.
network
low complexity
mediawiki CWE-79
6.1
6.1