CVE-2025-7056 Information

Jul 08, 2025 cve

Description

Improper Neutralization of Input During Web Page Generation (XSS or ‘Cross-site Scripting’) vulnerability in Wikimedia Foundation Mediawiki - UrlShortener Extension allows Stored XSS.This issue affects Mediawiki - UrlShortener Extension: from 1.42.X before 1.42.7 from 1.43.X before 1.43.2.

Reference

https://gerrit.wikimedia.org/r/c/mediawiki/extensions/UrlShortener/+/1166268 https://phabricator.wikimedia.org/T394869

CNNVD-202507-677 (Published: 2025-07-07)

Share on:

CVE-2025-7056 Information

Description

Reference

Related CNNVD