CNNVD-202510-2526 Information
Oct 18, 2025
cve
CNNVD ID
CNNVD-202510-2526
Related CVE
- CNNVD Published: 2025-10-18
Description (Chinese)
Mediawiki - GrowthExperiments Extension是Mediawiki开源的一个插件。 Mediawiki - GrowthExperiments Extension master版本至1.39之前版本存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致存储型跨站脚本攻击。
Description (English)
Mediawiki - GrowthExperions Extension is an open-source plugin for Mediawiki. There was a security loophole in the previous versions of Mediawiki - GrowthExperions Extension Master to 1.39, which stemmed from the inaccuracy of input during web page generation, which could lead to a storage-type cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2025-10-18
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/q/Iafd0acccf9a5c20d9e955d7bc3de1304968401ec https://phabricator.wikimedia.org/T402698 https://access.redhat.com/security/cve/cve-2025-62667
Patch
https://phabricator.wikimedia.org/T402698
Share on: