CVE-2018-25065

LOW

mediawiki-extensions-I18nTags - XSS

Title source: llm
STIX 2.1

Description

A vulnerability was found in Wikimedia mediawiki-extensions-I18nTags and classified as problematic. This issue affects some unknown processing of the file I18nTags_body.php of the component Unlike Parser. The manipulation leads to cross site scripting. The attack may be initiated remotely. The identifier of the patch is b4bc3cbbb099eab50cf2b544cf577116f1867b94. It is recommended to apply a patch to fix this issue. The identifier VDB-217445 was assigned to this vulnerability.

References (3)

Core 3
Core References
Third Party Advisory vdb-entry technical-description
https://vuldb.com/?id.217445
Third Party Advisory signature permissions-required
https://vuldb.com/?ctiid.217445

Scores

CVSS v3 3.5
EPSS 0.0052
EPSS Percentile 40.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-79
Status published
Products (1)
wikimedia/mediawiki-extensions-i18ntags < 2018-08-06
Published Jan 05, 2023
Tracked Since Feb 18, 2026