2 matches found
CVE-2025-53480
The CheckUser extension’s Special:Investigate page has a vulnerability in the Account information tab, where specific internationalized messages are rendered without proper escaping. Attackers can exploit this by appending ?uselang=x-xss to the URL, causing reflected XSS when the UI renders...
CVE-2025-53480
The CVE-2025-53480 issue affects the MediaWiki CheckUser extension on the Special:Investigate page, Account information tab. Root cause: specific internationalized messages are rendered without proper escaping, enabling reflected XSS when an attacker appends ?uselang=x-xss to the URL. Affected ve...