CVEs-PoC/2017/CVE-2017-0366.md

### [CVE-2017-0366](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0366)
![](https://img.shields.io/static/v1?label=Product&message=mediawiki&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=bypass%20filter&color=brighgreen)

### Description

Mediawiki before 1.28.1 / 1.27.2 / 1.23.16 contains a flaw allowing to evade SVG filter using default attribute values in DTD declaration.

### POC

#### Reference
- https://phabricator.wikimedia.org/T151735

#### Github
No PoCs found on GitHub currently.