Vulnerability CVE-2023-37255
Published: 2023-06-29

Description:
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In Special:CheckUser, a check of the "get edits" type is vulnerable to HTML injection through the User-Agent HTTP request header.

 References:
https://phabricator.wikimedia.org/T333569
Copyright 2026, cxsecurity.com

 

Back to Top