High severityNVD Advisory· Published Mar 10, 2026· Updated Apr 16, 2026
CVE-2026-30917
CVE-2026-30917
Description
Bucket is a MediaWiki extension to store and retrieve structured data on articles. Prior to 2.1.1, a stored XSS can be inserted into any Bucket table field that has a PAGE type, which will execute whenever a user views that table's corresponding Bucket namespace page. This vulnerability is fixed in 2.1.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <2.1.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.