2025-07-07 19:12:46
wikimedia-foundation
PUBLISHED
Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in Wikimedia Foundation Mediawiki - MediaSearch Extension allows Stored XSS.This issue affects Mediawiki - MediaSearch Extension: from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.