5 matches found
CVE-2025-32071
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata Extension allows Cross-Site Scripting XSS from widthheight message via ImageHandler::getDimensionsStringThis issue affects Mediawiki - Wikidata Extension: from 1.39 through 1.43...
CVE-2025-32071
creationtimestamp| type| source ---|---|--- 2025-04-11 17:32:41+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114320523948394256 2025-04-11 19:43:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmkroqdc3u2q 2025-04-11 19:50:40+00:00| seen|...
CVE-2025-32071
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata Extension allows Cross-Site Scripting XSS from widthheight message via ImageHandler::getDimensionsStringThis issue affects Mediawiki - Wikidata Extension: from 1.39 through 1.43...
CVE-2025-32071 Wikibase CommonsInlineImageFormatter: i18n XSS
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata Extension allows Cross-Site Scripting XSS from widthheight message via ImageHandler::getDimensionsStringThis issue affects Mediawiki - Wikidata Extension: from 1.39 through 1.43...
CVE-2025-32071
CVE-2025-32071 affects the Wikimedia Foundation MediaWiki Wikidata Extension (Wikibase/Wikidata). Affects MediaWiki-Wikidata Extension versions 1.39 through 1.43 where improper input validation in ImageHandler::getDimensionsString() enables Cross-Site Scripting (XSS) via the widthheight message. ...