Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Special:Ask in Semantic MediaWiki before 4.0.2 allows Reflected XSS.
Advisories for Composer/Mediawiki/Semantic-Media-Wiki package
2023
Special:Ask in Semantic MediaWiki before 4.0.2 allows Reflected XSS.