Security Advisory

CVE-2026-39839

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 19:29:11

Last updated 2026-04-07 20:42:43

Assigner wikimedia-foundation

State PUBLISHED

Description

Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS.This issue affects Mediawiki - Cargo Extension: before 3.8.7.

← Browse all CVEs View on cve.org ↗