Unrated severityNVD Advisory· Published Jan 12, 2024· Updated Jun 3, 2025
CVE-2024-23178
CVE-2024-23178
Description
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- MediaWiki/Phonosdescription
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.