A vulnerability identified as problematic has been detected in Wikimedia timeline up to 1.45.x/1.45.3/1.44.5/1.43.8. This impacts an unknown function of the file includes/timeline.Php. Performing a manipulation results in cross site scripting.

This vulnerability is known as CVE-2026-58038. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.