XSS in Wikimedia Foundation Checkuser
CVE-2026-58034
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/component…
Vulnerability class: XSS (Cross-Site Scripting)
Affected products
- Wikimedia Foundation Checkuser — versions 1.46.0-rc.0