Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-32077

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Extension:SimpleCalendar allows Cross-Site Scripting (XSS).This issue affects Mediawiki - Extension:SimpleCalendar: from 1.39 through 1.43.

Published

2025-04-11T17:15:44.513

Last Modified

2025-04-15T18:39:43.697

Status

Awaiting Analysis

Source

c4f26cc8-17ff-4c99-b5e2-38fc1793eacc

Severity

Weaknesses

Type: Secondary
CWE-20

Affected Vendors & Products

References

https://gerrit.wikimedia.org/r/q/Ic5b5ce8f7791026eff1aafffb32a68f3aab119be (c4f26cc8-17ff-4c99-b5e2-38fc1793eacc)
https://phabricator.wikimedia.org/T383472 (c4f26cc8-17ff-4c99-b5e2-38fc1793eacc)