CVE-2026-55692
HIGH SEVERITYCVSS Score & Metrics
Base Score
7.5 / 10
Vulnerability Description
StarCitizenWiki Extension Embed Video: Stored XSS via malformed src url with $wgEmbedVideoRequireConsent enabled
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
composer
Product
starcitizenwiki/embedvideo
External References
- https://github.com/StarCitizenWiki/mediawiki-extensions-EmbedVideo/security/advisories/GHSA-5c7p-g73q-rpg5
- https://github.com/StarCitizenWiki/mediawiki-extensions-EmbedVideo/commit/370156335b325bb81d14d89edf0a1f2643d50a84
- https://github.com/StarCitizenWiki/mediawiki-extensions-EmbedVideo/releases/tag/v4.1.0
- https://github.com/advisories/GHSA-5c7p-g73q-rpg5
Discussion (0)
Add Comment
No comments yet. Be the first!