CNNVD-202601-1579 Information

CNNVD ID

CNNVD-202601-1579

Related CVE

CVE-2026-22713

• CNNVD Published: 2026-01-09

Description (Chinese)

MediaWiki - GrowthExperiments Extension是MediaWiki开源的一个插件。 MediaWiki - GrowthExperiments Extension 1.45版本、1.44版本、1.43版本和1.39版本存在安全漏洞，该漏洞源于输入中和不当，可能导致跨站脚本攻击。

Description (English)

MediaWiki - GrowthExperions Extension is an open-source plugin for MediaWiki. There is a security loophole in MediaWiki - GrowthExperions Extension 1.45, 1.44, 1.43 and 1.39, which stems from the insufficiency of the input and may lead to a cross-site scrip attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

维基媒体

Published

2026-01-09

Last Modified

2026-02-24

References

https://phabricator.wikimedia.org/T411144 https://gerrit.wikimedia.org/r/q/Iff01940a163ed87ec52f3a64ba6b2dbfa2759df3 https://access.redhat.com/security/cve/cve-2026-22713

Patch

https://www.mediawiki.org/wiki/Special:ExtensionDistributor/GrowthExperiments