A vulnerability was found in Wikimedia GlobalWatchlist Extension up to 1.43.6/1.44.3/1.45.1 on Mediawiki. It has been classified as problematic. The impacted element is an unknown function. This manipulation causes cross site scripting.
This vulnerability is handled as CVE-2026-39933. The attack can be initiated remotely. There is not any exploit available.
Upgrading the affected component is recommended.
