CVE-2025-62665

Published: Oct 18, 2025

Modified: Oct 20, 2025

PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - Skin:BlueSky allows Stored XSS.This issue affects Mediawiki - Skin:BlueSky: from master before 1.39.

Vendor	Product	Versions
Wikimedia Foundation	Mediawiki - Skin:BlueSky	affected `master - < 1.39`

Weaknesses (CWE)

CWE-79

References

https://phabricator.wikimedia.org/T401046

https://gerrit.wikimedia.org/r/q/I64c9e2983ed6629505f72ef9449c09137b3c69ae

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-62665

Description

Affected Products

Weaknesses (CWE)

References