CVE-2025-62702

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - PageTriage Extension allows Stored XSS.This issue affects Mediawiki - PageTriage Extension: from master before 1.44...

CVE-2025-62701

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - Wikistories allows Stored XSS.This issue affects Mediawiki - Wikistories: from master before 1.44...

CVE-2025-62701

CVE-2025-62701 concerns a stored XSS in the Wikimedia Foundation MediaWiki Wikistories extension. The issue is caused by improper neutralization of input during web page generation, enabling stored XSS. Affected component: Wikistories (extension) as used in MediaWiki, with impact on versions from...

CVE-2025-62702

CVE-2025-62702 describes a stored XSS in the Wikimedia MediaWiki PageTriage Extension (vulnerable in master before 1.44). The issue stems from improper neutralization of user input during web page generation, allowing stored XSS per the description. Affected component: PageTriage Extension for Me...

MediaWiki < 1.39.14, 1.40.x < 1.43.4, 1.44.x < 1.44.1 Multiple Vulnerabilities - Windows

MediaWiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mediawiki:mediawiki"; ifdescripti...

CVE-2017-18487

The adsense-plugin aka Google AdSense plugin before 1.44 for WordPress has multiple XSS issues...