GHSA-r23x-87q7-xq2fMediumCVSS 5.4

Improper neutralization of input during web page generation ('cross-site scripting')...

Published
July 1, 2026
Last Modified
July 6, 2026

🔗 CVE IDs covered (1)

📋 Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows Stored XSS.

This issue affects Mediawiki - Cargo Extension: from * before 3.9.1.

🔗 References (4)