2 matches found
CVE-2025-62664
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - ImageRating Extension allows Stored XSS.This issue affects Mediawiki - ImageRating Extension: from master before 1.39...
CVE-2025-62700
CVE-2025-62700 describes a Stored XSS in the Wikimedia Foundation MediaWiki extension “MultiBoilerplate Extensionmaste.” The vulnerability arises from improper neutralization of input during web page generation, allowing user-supplied data to be stored and later rendered as executable script. Aff...