CVE-2025-61650

Name of the Vulnerable Software and Affected Versions Wikimedia Foundation CheckUser versions prior to 795bf333272206a0189050d975e94b70eb7dc507

Description The software contains an Improper Neutralization of Input During Web Page Generation issue, potentially leading to Cross-site Scripting (XSS). The issue is located in the src/Services/CheckUserUserInfoCardService.Php program files.

Recommendations Update to version 795bf333272206a0189050d975e94b70eb7dc507 or later.