CNNVD-202510-2522 Information

CNNVD ID

CNNVD-202510-2522

Related CVE

CVE-2025-62670

• CNNVD Published: 2025-10-18

Description (Chinese)

Mediawiki - FlexDiagrams Extension是Mediawiki开源的一个制作表格的插件。 Mediawiki - FlexDiagrams Extension master版本存在安全漏洞，该漏洞源于网页生成期间输入中和不当，可能导致存储型跨站脚本攻击。

Description (English)

Mediawiki - FlexDiagams Extension is a plugin to the production of tables from the Mediawiki Open Source. The Mediawiki-FlexDiagrams Extension master version has a security loophole, which stems from inappropriate input during webpage generation and may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

维基媒体

Published

2025-10-18

Last Modified

2026-02-24

References

https://gerrit.wikimedia.org/r/c/mediawiki/extensions/FlexDiagrams/+/1179692 https://phabricator.wikimedia.org/T402149 https://access.redhat.com/security/cve/cve-2025-62670

Patch

https://phabricator.wikimedia.org/T402149