CNNVD-202510-2528 Information
Oct 18, 2025
cve
CNNVD ID
CNNVD-202510-2528
Related CVE
- CNNVD Published: 2025-10-18
Description (Chinese)
Mediawiki - ImageRating Extension是Mediawiki开源的一个图像分类评级插件。 Mediawiki - ImageRating Extension 1.39之前版本存在安全漏洞,该漏洞源于网页生成期间输入中和不当,可能导致存储型跨站脚本攻击。
Description (English)
Mediawiki - ImageRating Extension is an image classification plugin from Mediawiki open source. There was a security loophole in the previous version of Mediawiki - ImageRating Extension 1.39, which stemmed from the misinformation of the input during the web page generation, which could lead to a storage-type cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2025-10-18
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/q/Ie42bba0d80bace319cf88d71233db1f598ac613b https://phabricator.wikimedia.org/T402002 https://access.redhat.com/security/cve/cve-2025-62664
Patch
https://phabricator.wikimedia.org/T402002
Share on: