CVE-2017-20239 in MDwikiinfo

Summary

MDwiki contains a cross-site scripting vulnerability that allows remote attackers to execute arbitrary JavaScript by injecting malicious code through the location hash parameter. Attackers can craft URLs with JavaScript payloads in the hash fragment that are parsed and rendered without sanitization, causing the injected scripts to execute in the victim's browser context.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsible

VulnCheck

Reservation

04/12/2026

Disclosure

04/12/2026

Moderation

VulDB entry created

Entries

VDB-357018

CPE

ready

CWE

CWE-79 (Confirmed)

Exploit

Download

CVSS

5.2

EPSS

0.00000

Activities

Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-20239
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-20239
CVE Details	https://www.cvedetails.com/cve/CVE-2017-20239/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!