Security Advisory

CVE-2026-39837

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 19:47:18

Last updated 2026-04-07 20:42:42

Assigner wikimedia-foundation

State PUBLISHED

Description

Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in WikiWorks Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7.

← Browse all CVEs View on cve.org ↗