CVE-2025-53493

Source
https://cve.org/CVERecord?id=CVE-2025-53493
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-53493.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-53493
Published
2025-07-02T15:15:28.120Z
Modified
2026-07-09T17:26:47.406094Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allows Stored XSS.This issue affects Mediawiki - MintyDocs Extension: from 1.43.X before 1.43.2.

References

Affected packages

Git / github.com/wikimedia/mediawiki-extensions-mintydocs

Affected ranges

Type
GIT
Repo
https://github.com/wikimedia/mediawiki-extensions-mintydocs
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "cpe": "cpe:2.3:a:yaronkoren:mintydocs:*:*:*:*:*:mediawiki:*:*",
    "source": "CPE_RANGE",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.4.1"
        }
    ]
}

Affected versions

0.*
0.1
0.3
0.4
0.5
0.6
0.7
0.7.1
0.8
0.8.1
0.9
1.*
1.0
1.1
1.2
1.2.1
1.3
1.4
Other
REL1_32
REL1_33
REL1_34

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-53493.json"