CVE-2026-30917 | weirdgloop mediawiki-extensions-Bucket up to 2.1.0 cross site scripting

Inserito da Angelo Barbosa | Mar 10, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in weirdgloop mediawiki-extensions-Bucket up to 2.1.0. Affected is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-30917. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.

CVE-2026-30917 | weirdgloop mediawiki-extensions-Bucket up to 2.1.0 cross site scripting

Post correlati

CVE-2024-9878 | 10Web Photo Gallery Plugin up to 1.8.30 on WordPress cross site scripting

CVE-2025-40887 | Nozomi Guardian/CMC up to 25.1.x Alert sql injection

CVE-2026-2524 | Open5GS 2.7.6 MME mme_s11_handle_create_session_response denial of service (Issue 4284)

CVE-2025-6778 | code-projects Food Distributor Site 1.0 /admin/save_settings.php site_phone/site_email/address cross site scripting