📦

skin\

Vendor: mediawiki

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 0.53% Exploit Prob.
Latest CVE CVE-2020-27620 Oct 22

Security Vulnerability Index

Page 1 / 1
6.1 CVSS
CVE-2020-27620

The Cosmos Skin for MediaWiki through 1.35.0 has stored XSS because MediaWiki messages were not being properly escaped. This is related to wfMessage and Html::rawElement, as demonstrated by CosmosSocialProfile::getUserGroups.

EPSS: 0.53%