CVE-2025-53478
07.07.2025, 19:15
The CheckUser extensions Special:Investigate interface is vulnerable to reflected XSS due to improper escaping of certain internationalized system messages rendered on the IPs and User agents tab. This issue affects Mediawiki - CheckUser extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.
Awaiting analysis
This vulnerability is currently awaiting analysis.