CVE-2026-0671

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki - UploadWizard extension allows Cross-Site Scripting XSS.This issue affects MediaWiki - UploadWizard extension: 1.45, 1.44, 1.43, 1.39...

CVE-2026-0671

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki - UploadWizard extension allows Cross-Site Scripting XSS.This issue affects MediaWiki - UploadWizard extension: 1.45, 1.44, 1.43, 1.39...

CVE-2026-0671 Multiple stored i18n/message-key XSSes in UploadWizard

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki - UploadWizard extension allows Cross-Site Scripting XSS.This issue affects MediaWiki - UploadWizard extension: 1.45, 1.44, 1.43, 1.39...

PT-2026-1967

Name of the Vulnerable Software and Affected Versions MediaWiki - UploadWizard extension versions 1.39 through 1.45 Description The MediaWiki - UploadWizard extension contains a flaw related to improper input neutralization during web page generation, which could allow for Cross-Site Scripting XS...

CVE-2025-62663

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - UploadWizard Extension allows Stored XSS.This issue affects Mediawiki - UploadWizard Extension: from master before 1.39...

CVE-2025-62663

CVE-2025-62663 is a Stored XSS in The Wikimedia Foundation MediaWiki UploadWizard extension. It arises from improper neutralization of input during web page generation, allowing stored XSS via system messages. Affected: UploadWizard extension, master branch prior to version 1.39. CVSS 4.0/6.9 bas...

CVE-2025-62663 Stored XSS through a system message in UploadWizard

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - UploadWizard Extension allows Stored XSS.This issue affects Mediawiki - UploadWizard Extension: from master before 1.39...

Mediawiki - UploadWizard Extension 安全漏洞

Mediawiki - UploadWizard Extension is an open source file upload plugin for Mediawiki. A security vulnerability exists in Mediawiki - UploadWizard Extension master version to versions prior to 1.39, which stems from improper input neutralization during web page generation and could lead to stored...