Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2024-47840

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation Mediawiki - Apex skin allows Stored XSS.This issue affects Mediawiki - Apex skin: from 1.39.X before 1.39.9, from 1.41.X before 1.41.3, from 1.42.X before 1.42.2.

  • Published: Oct 5, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-47840
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.8
  • AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
wikimedia / apex 1.13.0 1.39.9
wikimedia / apex 1.42.0 1.42.2
wikimedia / apex 1.41.0 1.41.3