Wikimedia MediaWiki MintyDocs Extension Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in the Wikimedia Foundation MediaWiki MintyDocs Extension, specifically in versions 1.39.X, 1.42.X, and 1.43.X prior to 1.43.2. This vulnerability arises from improper input sanitization during web page generation, allowing malicious scripts to be embedded and executed.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the affected page.

Reproduction

The vulnerability can be reproduced by creating a topic or manual page and inserting a script tag containing JavaScript, such as an alert, into the 'display name' parameter of MintyDocs parser functions. After saving the page, the script will execute when the page is viewed. This issue can also be reproduced by injecting scripts into version pages or product pages that list versions, which will execute when the page is accessed.

Remediation

Users can update to MintyDocs Extension version 1.43.2 or later to address this vulnerability.