CVE-2026-39838

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Apr 07, 2026

Vendor unknown

Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Wikimedia Foundation MediaWiki - ProofreadPage Extension allows XSS Targeting Non-Script Elements.This issue affects .

References

https://gerrit.wikimedia.org/r/q/Idd51e18479b32b7176b43ff74ca1c49d6bdd0628
https://phabricator.wikimedia.org/T406088