1 results (0.001 seconds)
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-32072 – HTML injection in feed output from i18n message
https://notcve.org/view.php?id=CVE-2025-32072
11 Apr 2025 — Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43. • https://gerrit.wikimedia.org/r/c/mediawiki/core/+/1120134 • CWE-116: Improper Encoding or Escaping of Output •