CNNVD-202510-2586 Information

CNNVD ID

CNNVD-202510-2586

Related CVE

CVE-2025-62700

• CNNVD Published: 2025-10-20

Description (Chinese)

MediaWiki - MultiBoilerplate Extension是MediaWiki开源的一个模版页面选择扩展。 MediaWiki - MultiBoilerplate Extension 1.39之前版本存在安全漏洞，该漏洞源于输入中和不当，可能导致存储型跨站脚本攻击。

Description (English)

MediaWiki - MultiBoilerplate Extension is a template page extension for MediaWiki open source. There was a security loophole in the previous version of MediaWiki - MultiBoilerplate Extension 1.39, which originated in inappropriate input and could lead to a storage-type cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

维基媒体

Published

2025-10-20

Last Modified

2026-02-24

References

https://phabricator.wikimedia.org/T399658 https://gerrit.wikimedia.org/r/q/I10e205e3027d4772b2cd9801647fc6c171e4b35b https://access.redhat.com/security/cve/cve-2025-62700

Patch

https://phabricator.wikimedia.org/T399658