CVE-2026-22710 Stored XSS through autocomment system messages in Wikibase

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Wikibase Extension: 1.45, 1.44, 1.43, 1.39...

CVE-2026-22710 Stored XSS through autocomment system messages in Wikibase

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - Wikibase Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Wikibase Extension: 1.45, 1.44, 1.43, 1.39...

CVE-2026-22710

The CVE-2026-22710 issue affects Mediawiki - Wikibase Extension versions 1.39 through 1.45. It stems from improper neutralization of input during web page generation, enabling Cross-Site Scripting (XSS) through autocomment system messages. Impact is XSS with potential script injection, as describ...

PT-2026-2256

Name of the Vulnerable Software and Affected Versions Mediawiki - Wikibase Extension versions 1.39 through 1.45 Description The Mediawiki - Wikibase Extension is susceptible to a Cross-Site Scripting XSS issue due to improper neutralization of input during web page generation. This allows for the...