VYPR

Wikidata Extension

by Wikimedia Foundation

CVEs (1)

  • CVE-2025-32071MedApr 11, 2025
    risk 0.35cvss 5.4epss 0.00

    Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Wikidata Extension allows Cross-Site Scripting (XSS) from widthheight message via ImageHandler::getDimensionsString()This issue affects Mediawiki - Wikidata Extension: from 1.39 through 1.43.