{"id":"CVE-2025-3469","details":"Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLMultiSelectField.Php.\n\nThis issue affects MediaWiki: before 1.39.12, 1.42.6, 1.43.1.","aliases":["BIT-mediawiki-2025-3469"],"modified":"2026-04-16T04:44:41.838743439Z","published":"2025-04-10T19:16:02Z","references":[{"type":"WEB","url":"https://phabricator.wikimedia.org/T358689"}],"schema_version":"1.7.5"}