HomeDefault status
unaffected
1.43.x (semver) before 1.43.2
affected
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - WikiHiero Extension allows Stored XSS.This issue affects Mediawiki - WikiHiero Extension: from 1.43.X before 1.43.2.
Problem types
CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
Product status
1.43.x (semver) before 1.43.2
Credits
SomeRandomDeveloper
References
phabricator.wikimedia.org/T396524
phabricator.wikimedia.org/T396524
gerrit.wikimedia.org/...awiki/extensions/wikihiero/+/1166018