5 matches found
The vulnerability in the HTMLMultiSelectField.Php file of the MediaWiki software environment allows a hacker to execute cross-site scripting attacks.
The vulnerability of the HTMLMultiSelectField.Php file, a software component used for implementing the hypertext environment in MediaWiki, is related to the lack of protective measures taken for the structure of the web page. Exploiting this vulnerability could allow an attacker to carry out a...
Cross-site Scripting (XSS)
Overview mediawiki/core is a Free software wiki application developed by the Wikimedia Foundation and others. Note: This package is not maintained on Packagist anymore, but newer releases exist. Affected versions of this package are vulnerable to Cross-site Scripting XSS through the...
CVE-2025-3469 i18n XSS vulnerability in HTMLMultiSelectField when sections are used
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLMultiSelectField.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6,...
CVE-2025-3469 i18n XSS vulnerability in HTMLMultiSelectField when sections are used
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLMultiSelectField.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6,...
PT-2025-16014 · Mediawiki +2 · Mediawiki +2
Name of the Vulnerable Software and Affected Versions: MediaWiki versions prior to 1.39.12 MediaWiki versions prior to 1.42.6 MediaWiki versions prior to 1.43.1 Description: The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting...