An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers.
2023-11-03T05:15:30.730
2024-11-21T08:26:48.780
Modified
CVSSv3.1: 5.4 (MEDIUM)
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | mediawiki | mediawiki | < 1.35.12 | Yes |
Application | mediawiki | mediawiki | < 1.39.5 | Yes |
Application | mediawiki | mediawiki | 1.40.0 | Yes |
Application | mediawiki | mediawiki | 1.40.0 | Yes |