XSS in Wikimedia Foundation Mediawiki

CVE-2026-58032

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Api/index.Js. Thi…

Vulnerability class: XSS (Cross-Site Scripting)

Affected products

Weakness classification (CWE)

References