[ CVE-2021-46146 ] Stored XSS via WikibaseMediaInfo caption fields at commons.wikimedia.org

How to fix?

--

--

--

Pemburu Bug & Pengujian Penetrasi

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Mailchimp fraudulently charged my credit card for spambot activity… Really!

{UPDATE} Schule der magischen Tiere Hack Free Resources Generator

6 reasons to stop using your personal mobile line for business and opt for a virtual phone number

Australian regulators weekly wrap — Monday, 24 January 2022

HashEx Statement Regarding MetaPharm

NMAP commands for scanning remote hosts

This is My First Blog

Last Week In Blockchain and CyberSecurity News — May 7, 2019

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Aidil Arief

Aidil Arief

Pemburu Bug & Pengujian Penetrasi

More from Medium

Broken Access Control Overview

Error: Please run “shodan init <api key>” before using this command

XSS — Cross-Site Scripting

How did I find Log4j vulnerability via Static Code Analysis and receive €€€ bounty?