A vulnerability, which was classified as problematic, has been found in MediaWiki up to 1.39.5/1.40.1/1.41.0. This issue affects the function
Html::rawElement
of the component UnlinkedWikibase Extension. The manipulation of the argument err leads to cross site scripting.
The identification of this vulnerability is CVE-2024-34500. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.