EUVD-2025-10816

Malicious code in bioql PyPI...

CVE-2025-32078

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Version Compare Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Version Compare Extension: from 1.39 through 1.43...

CVE-2025-32078

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Version Compare Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Version Compare Extension: from 1.39 through 1.43...

CVE-2025-32078

CVE-2025-32078 is an XSS flaw in the Wikimedia Foundation MediaWiki Version Compare Extension (versions 1.39–1.43). The issue stems from improper encoding/escaping of output in the extension, enabling Cross-Site Scripting. Affected product: MediaWiki Version Compare Extension; affected versions: ...

CVE-2025-32078 XSSes and potential RCE in Special:VersionCompare

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Version Compare Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Version Compare Extension: from 1.39 through 1.43...

CVE-2025-32078 XSSes and potential RCE in Special:VersionCompare

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Version Compare Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Version Compare Extension: from 1.39 through 1.43...

PT-2025-16142 · Mediawiki · Mediawiki

Name of the Vulnerable Software and Affected Versions: Mediawiki - Version Compare Extension versions 1.39 through 1.43 Description: The issue is related to Improper Encoding or Escaping of Output, which allows Cross-Site Scripting XSS in the Mediawiki - Version Compare Extension. Recommendations...

MediaWiki 安全漏洞

MediaWiki is a suite of free and freely available web-based Wiki engines from the Wikimedia USA Foundation. The product can be used to deploy in-house knowledge management and content management systems. Mediawiki - Version Compare Extension A security vulnerability exists in versions 1.39 throug...

GHSA-7R83-W6R8-FH6W Reflected Cross-site Scripting (XSS) in ACS Commons

ACS Commons version 4.9.2 and earlier suffers from a Reflected Cross-site Scripting XSS vulnerability in version-compare and page-compare due to invalid JCR characters that are not handled correctly. An attacker could potentially exploit this vulnerability to inject malicious JavaScript content...

CVE-2021-21043 Reflected Cross-site Scripting (XSS) on version-compare and page-compare tools

ACS Commons version 4.9.2 and earlier suffers from a Reflected Cross-site Scripting XSS vulnerability in version-compare and page-compare due to invalid JCR characters that are not handled correctly. An attacker could potentially exploit this vulnerability to inject malicious JavaScript content...