{"id":"CVE-2005-2396","details":"Cross-site scripting (XSS) vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template.","modified":"2025-08-09T19:01:28Z","published":"2005-07-27T04:00:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/15950"},{"type":"ADVISORY","url":"http://secunia.com/advisories/16130"},{"type":"FIX","url":"http://security.gentoo.org/glsa/glsa-200507-18.xml"},{"type":"FIX","url":"http://www.securityfocus.com/bid/14327"},{"type":"WEB","url":"http://www.osvdb.org/17763"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/21491"}],"schema_version":"1.7.3"}