Vulnerability Details CVE-2025-53489
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - GoogleDocs4MW Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - GoogleDocs4MW Extension: from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.8%
CVSS Severity
CVSS v3 Score 5.6
References
Products affected by CVE-2025-53489
-
cpe:2.3:a:jackphoenix:googledocs4mw:-
-
cpe:2.3:a:mediawiki:mediawiki:1.42.0
-
cpe:2.3:a:mediawiki:mediawiki:1.42.1
-
cpe:2.3:a:mediawiki:mediawiki:1.42.2
-
cpe:2.3:a:mediawiki:mediawiki:1.42.3
-
cpe:2.3:a:mediawiki:mediawiki:1.42.4
-
cpe:2.3:a:mediawiki:mediawiki:1.42.5
-
cpe:2.3:a:mediawiki:mediawiki:1.42.6
-
cpe:2.3:a:mediawiki:mediawiki:1.43.0
-
cpe:2.3:a:mediawiki:mediawiki:1.43.1