📦

mediawiki-extensions-uploadwizard

Vendor: wikimedia

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 0 Code Available
Total RCEs 0 Remote Access
Total CVEs 2 Total Indexed
Avg. EPSS 0.03% Exploit Prob.
Latest CVE CVE-2026-0671 Jan 08

Security Vulnerability Index

Page 1 / 1
6.1 CVSS
CVE-2026-0671

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki - UploadWizard extension allows Cross-Site Scripting (XSS).This issue affects MediaWiki - UploadWizard extension: 1.45, 1.44, 1.43, 1.39.

EPSS: 0.03%