CVE-2024-23177
CVE-2024-23177 affects the WatchAnalytics extension in MediaWiki prior to 1.40.2 . The issue allows XSS via the Special:PageStatistics page parameter due to improper input handling in the extension. Impact is cross-site scripting (arbitrary JavaScript execution) in affected contexts. The CVSS bas...