Mediawiki: >> Mediawiki >> 1.39.15 Security Vulnerabilities
An issue was discovered in the GlobalBlocking extension in MediaWiki before 1.40.2. For a Special:GlobalBlock?uselang=x-xss URI, i18n-based XSS can occur via the parentheses message. This affects subtitle links in buildSubtitleLinks.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-01-12
Page 4