Unrated severityNVD Advisory· Published Jan 12, 2024· Updated Jun 4, 2025
CVE-2024-23172
CVE-2024-23172
Description
An issue was discovered in the CheckUser extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. XSS can occur via message definitions. e.g., in SpecialCheckUserLog.
Affected products
2- MediaWiki/CheckUserdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.