5 matches found
PT-2026-31044
Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in The Wikimedia Foundation Mediawiki - CampaignEvents Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - CampaignEvents Extension: 1.43.7, 1.44.4, 1.45.2...
PT-2026-2026
Name of the Vulnerable Software and Affected Versions MediaWiki - CampaignEvents extension versions 1.39 through 1.45 Description A missing authorization flaw exists in the Wikimedia Foundation MediaWiki - CampaignEvents extension, potentially allowing privilege abuse. The issue relates to the...
CVE-2025-53490
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - CampaignEvents Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - CampaignEvents Extension: from 1.43.X before 1.43.2...
CVE-2025-53490
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - CampaignEvents Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - CampaignEvents Extension: from 1.43.X before 1.43.2...
PT-2025-27808 · Mediawiki · Campaignevents Extension +1
Name of the Vulnerable Software and Affected Versions: Mediawiki - CampaignEvents Extension versions 1.43.X through 1.43.1 Description: The issue affects the Mediawiki - CampaignEvents Extension, allowing Cross-Site Scripting XSS due to improper neutralization of input during web page generation...