EUVD-2024-42709

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Sensitive information exposure in Wikimedia Foundation Mediawiki - PageTriage allows authentication bypass

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2024-47848	5 Oct 202402:54	–	circl
CNNVD	MediaWiki PageTriage 安全漏洞	5 Oct 202400:00	–	cnnvd
CVE	CVE-2024-47848	4 Oct 202423:53	–	cve
Cvelist	CVE-2024-47848 User can review/unreview articles while blocked	4 Oct 202423:53	–	cvelist
Fedora	[SECURITY] Fedora 40 Update: mediawiki-1.41.5-1.fc40	26 Jan 202501:57	–	fedora
Fedora	[SECURITY] Fedora 41 Update: mediawiki-1.41.5-1.fc41	26 Jan 202501:02	–	fedora
Tenable Nessus	Fedora 40 : mediawiki (2025-11277f6779)	26 Jan 202500:00	–	nessus
Tenable Nessus	Fedora 41 : mediawiki (2025-25b16d6561)	26 Jan 202500:00	–	nessus
NVD	CVE-2024-47848	5 Oct 202400:15	–	nvd
OpenVAS	Fedora: Security Advisory (FEDORA-2025-11277f6779)	27 Jan 202500:00	–	openvas

[
  {
    "enisaIdVendor": [
      {
        "id": "bf1d7b0d-c19a-3b07-b1f1-03b734055c5a",
        "vendor": {
          "name": "The Wikimedia Foundation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0a0ba7d1-aa34-3a5a-b4cc-8afc0f006543",
        "product": {
          "name": "Mediawiki - PageTriage"
        },
        "product_version": "1.39.x <1.39.9"
      },
      {
        "id": "645e5eb7-0ef0-3337-b5b9-70e7d178f4d5",
        "product": {
          "name": "Mediawiki - PageTriage"
        },
        "product_version": "1.42.x <1.42.2"
      },
      {
        "id": "c6cb302f-9579-3785-91e7-f9b4319e85c0",
        "product": {
          "name": "Mediawiki - PageTriage"
        },
        "product_version": "1.41.x <1.41.3"
      }
    ]
  }
]

Source	Link
phabricator	www.phabricator.wikimedia.org/T368628
phabricator	www.phabricator.wikimedia.org/T366991
gerrit	www.gerrit.wikimedia.org/r/q/I0288a715f7040a14ab7f70b2888fe1ef77a44588

03 Oct 2025 20:07Current

6.3Medium risk

Vulners AI Score6.3

CVSS 46.9

EPSS0.00532

SSVC