GHSA-f942-cxv6-p9mxLow

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')...

Published
July 1, 2026
Last Modified
July 1, 2026

🔗 CVE IDs covered (1)

📋 Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki.

This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js.

This issue affects MediaWiki: from 1.46.0-rc.0 before 1.46.0.

🔗 References (3)