2025-10-17 22:15:26
wikimedia-foundation
PUBLISHED
Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in The Wikimedia Foundation MediaWiki WebAuthn extension allows Stored XSS.This issue affects MediaWiki WebAuthn extension: 1.39, 1.43, 1.44.