Category:Extensions with XSS vulnerabilities
Appearance
Administrators, please do not delete this category! This category is automatically populated by {{XSS alert/en}} and so should not be deleted even if empty. |
Administrators, please do not delete this category! This is a maintenance category which sometimes contains pages that are in need of attention. If the category is empty then this is a good thing. |
These extensions are known to contain cross-site scripting (XSS) vulnerabilities, which expose users to malicious client code injection that could be used to, among other things, hijack user accounts or expose cookies to foreign domains.
It is advised that these are not used on a public, production wiki until the issues are addressed.
To add an extension to this list, tag it with {{XSS alert/en }}.
Pages in category "Extensions with XSS vulnerabilities"
This category contains only the following page.