What is CVE-2025-23078?

A medium severity Cross-Site Scripting (XSS) vulnerability exists in the Wikimedia Foundation Mediawiki - Breadcrumbs2 extension. Organizations should address this vulnerability to prevent potential exploitation.

What is the severity of CVE-2025-23078?

CVE-2025-23078 has a severity rating of MEDIUM with a CVSS base score of 6.5.

CVE-2025-23078 | Medium Vulnerability in Wikimedia Foundation Mediawiki

CVE-2025-23078 represents a Cross-Site Scripting (XSS) vulnerability within the Wikimedia Foundation's Mediawiki - Breadcrumbs2 extension. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. The affected versions include Mediawiki - Breadcrumbs2 extension from 1.39.X prior to 1.39.11, from 1.41.X prior to 1.41.5, and from 1.42.X prior to 1.42.4.

The CVSS score for this vulnerability is 6.5, classified as medium severity. The risk to organizations includes potential unauthorized access to sensitive information and the manipulation of user interactions on affected systems. Given that this vulnerability is accessible via the network, it poses a considerable risk to web applications relying on the affected extension.

Currently, there are no known exploits for this vulnerability, and it is not listed in the Known Exploited Vulnerabilities (KEV) catalog. However, organizations should remain vigilant, as the lack of current exploitation does not diminish the importance of addressing the issue promptly.

Organizations should prioritize patching immediately to mitigate the potential risks associated with CVE-2025-23078 and ensure the security of their web applications.

Vulnerability Details

The vulnerability is categorized under CWE-79, which pertains to improper neutralization of input during web page generation. The exploit may lead to various impacts, including a low confidentiality and integrity impact. There is no availability impact associated with this vulnerability.

For further detailed information, you can refer to the following resources: Gerrit Review and Phabricator Task.

Technical Analysis

The root cause of CVE-2025-23078 is improper input validation during the generation of web pages in the Mediawiki - Breadcrumbs2 extension. Attackers may leverage this flaw via a network access point without requiring any user interaction or additional privileges.

The attack complexity is low, making it easier for potential attackers to exploit this vulnerability. The impacts on confidentiality and integrity are categorized as low, indicating that sensitive data could be exposed or altered without proper authorization.

Given these factors, organizations should consider the implications of this vulnerability in their risk assessment and mitigation strategies.

Risk & Impact Analysis

Risk to organizations includes exposure to XSS attacks, which can lead to unauthorized data access and manipulation. The potential blast radius could affect multiple users interacting with the vulnerable extension. Organizations should assess the urgency of this vulnerability based on its CVSS score and exploitability status.

As this vulnerability is categorized as medium severity with a CVSS score of 6.5, organizations should address it in their priority patch cycle to mitigate risks effectively.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The vulnerable versions include Mediawiki - Breadcrumbs2 extension from 1.39.X before 1.39.11, from 1.41.X before 1.41.5, and from 1.42.X before 1.42.4. Organizations should ensure that they are using patched versions to mitigate this vulnerability.

Mitigation & Remediation

To mitigate CVE-2025-23078, organizations should update to the latest versions of the Mediawiki - Breadcrumbs2 extension. Remediation can be validated through penetration testing to ensure the effectiveness of applied patches.

Detection Guidance

Organizations should monitor logs for any unusual script injections or unexpected behaviors within the Mediawiki application. Indicators of compromise may include unexpected redirects or abnormal user interactions that indicate potential exploitation.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2025-23078 highlights the importance of secure coding practices and input validation in web applications. As organizations increasingly rely on third-party extensions, the potential for vulnerabilities such as XSS to arise becomes critical.

Security teams should focus on implementing robust security assessments and continuous monitoring to identify and mitigate similar vulnerabilities proactively. For more on this topic, consider reading our web application penetration testing guide and our best practices for penetration testing methodology to enhance your security posture.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-23078: Medium Vulnerability in Wikimedia Foundation Mediawiki - Breadcrumbs2 Extension