2 matches found
CVE-2025-62654
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation MediaWiki QuizGame extension allows Stored XSS.This issue affects MediaWiki QuizGame extension: 1.39, 1.43, 1.44...
CVE-2025-62653
The CVE-2025-62653 entry describes a stored XSS vulnerability in the Wikimedia Foundation MediaWiki PollNY extension. Affected versions are 1.39, 1.43, and 1.44. Root cause: improper neutralization of input during web page generation in the PollNY extension, enabling stored cross-site scripting. ...