Unrated severityNVD Advisory· Published Feb 3, 2026· Updated Feb 3, 2026
Stored i18n XSS exposed by security patch for T402077
CVE-2025-11261
Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Language/mediawiki.Language.Js.
This issue affects MediaWiki: from * before 1.39.15, 1.43.5, 1.44.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.39.15, <1.43.5, <1.44.2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.