Unsanitized SVG File Vulnerability in MediaWiki

Unsanitized SVG File Vulnerability in MediaWiki

CVE-2013-6453 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 does not properly sanitize SVG files, which allows remote attackers to have unspecified impact via invalid XML.

Learn more about our Web Application Penetration Testing UK.