Vulnerability Details CVE-2026-58031
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki.
This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js.
This issue affects MediaWiki: from 1.46.0-rc.0 before 1.46.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 3.2%
CVSS Severity
CVSS v3 Score 5.4
Products affected by CVE-2026-58031
-
cpe:2.3:a:mediawiki:mediawiki:1.46.0