Wikimedia Foundation MediaWiki ArticleFeedbackv5 Extension Cross-Site Scripting Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in the Wikimedia Foundation MediaWiki ArticleFeedbackv5 extension, specifically in versions 1.42.X prior to 1.42.2. This vulnerability arises from improper input sanitization during web page generation, allowing malicious users to inject harmful scripts that could be executed in the context of the user's browser.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the victim's browser.

Reproduction

To reproduce this vulnerability, leave feedback on a page with the ArticleFeedbackv5 extension enabled. Then, go to the Special:ArticleFeedbackv5 page, mark the feedback as inappropriate, and request oversight. After refreshing the page, the comment can be found again by viewing the activity, which will display the injected script as executed. This vulnerability can also be reproduced by using specific system messages to inject scripts, which will be executed when the corresponding feedback link is hovered over.

Remediation

Users can update to ArticleFeedbackv5 version 1.42.2 or later to address this vulnerability.