CNNVD-202602-512 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-512
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Wikimedia VisualEditor是Wikimedia基金会的一个可视化编辑器。 Wikimedia VisualEditor 1.39.14之前版本、1.43.4之前版本和1.44.1之前版本存在安全漏洞,该漏洞源于输入中和不当,可能导致跨站脚本攻击。
Description (English)
Wikimedia VisaLEditor is a visual editor of the Wikimedia Foundation. There is a security loophole in the pre-Wikimedia VisaEditor 1.39.14, pre-version 1.43.4 and pre-version 1.44.1, which stems from the inaccuracy of the input and may lead to a cross-site scrip attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-02-03
Last Modified
2026-02-24
References
https://phabricator.wikimedia.org/T397232
Patch
https://www.mediawiki.org/wiki/Extension:VisualEditor
Share on: