Wikimedia Foundation Vector vulnerabilities
2 known vulnerabilities affecting wikimedia_foundation/vector.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
Vulnerabilities
Page 1 of 1
CVE-2025-61657UNKNOWNCVSS 0.0≥ *, < 1.43.4, 1.44.12026-02-03
CVE-2025-61657 [NONE] CWE-79 CVE-2025-61657: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Vector. This vulnerability is associated with program files resources/skins.Vector.Js/stickyHeader.Js.
This issue affects Vector: from * before 1.43.4, 1.44.1.
nvd
CVE-2025-6596UNKNOWNCVSS 0.0≥ >= 1.40.0, < 1.42.7, 1.43.2, 1.44.02026-02-02
CVE-2025-6596 [NONE] CWE-79 CVE-2025-6596: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Vector. This vulnerability is associated with program files resources/skins.Vector.Js/portlets.Js, resources/skins.Vector.Legacy.Js/portlets.Js.
This issue affects Vector: from >= 1.40.0 before 1.42.7, 1.43.2, 1.44.0.
nvd