{"uuid": "6b204b87-a513-48ca-84eb-4489bf3e9d34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-27957", "type": "seen", "source": "https://t.me/cibsecurity/15672", "content": "\u203c CVE-2020-27957 \u203c\n\nThe RandomGameUnit extension for MediaWiki through 1.35 was not properly escaping various title-related data. When certain varieties of games were created within MediaWiki, their names or titles could be manipulated to generate stored XSS within the RandomGameUnit extension.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-10-28T06:30:58.000000Z"}