CVE-2025-32070
Description
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43.
CWE
- CWE-20 — CWE-20 Improper Input Validation
Affected
- The Wikimedia Foundation / Mediawiki - AJAX Poll Extension — v=1.39 ≤1.43 [affected]
CVSS
- (none)
References
- https://phabricator.wikimedia.org/T389590
- https://gerrit.wikimedia.org/r/q/Ib59c59b2cd36928ab200149c851e2bfcf5cf920c
Source
cvelistV5-main/cves/2025/32xxx/CVE-2025-32070.json