XSS in Wikimedia Foundation Mediawiki
CVE-2026-58031
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/A…
Vulnerability class: XSS (Cross-Site Scripting)
Affected products
- Wikimedia Foundation Mediawiki — versions 1.46.0-rc.0