CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

ATTACKERKB•added 2026/02/03 1:16 a.m.•3 views

CVE-2025-67477

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js. This issue affects MediaWiki: from before...

5.2AI score0.00008EPSS

Exploits0References2

Cvelist•added 2026/02/03 1:16 a.m.•23 views

CVE-2025-67477 Stored XSS through a system message in Special:ApiSandbox

0.00008EPSS

Exploits0References1

CVE•added 2026/02/03 1:16 a.m.•14 views

CVE-2025-67477

CVE-2025-67477 is a Wikimedia MediaWiki XSS vulnerability in the ApiSandboxLayout.Js (resources/src/mediawiki.Special.Apisandbox/ApiSandboxLayout.Js). Affected: MediaWiki before 1.44.3 and 1.45.1. Root cause: improper neutralization of input during web page generation. Impact statements from the ...

6.1CVSS5.2AI score0.00008EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/02/03 1:16 a.m.•1 views

CVE-2025-67477 Stored XSS through a system message in Special:ApiSandbox

5.3AI score0.00008EPSS

Exploits0References1

NVD•added 2026/02/02 11:16 p.m.•2 views

CVE-2025-6594

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

4.7CVSS0.00007EPSS

Exploits0References1

Cvelist•added 2026/02/02 11:0 p.m.•24 views

CVE-2025-6594 XSS in Special:ApiSandbox

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

0.00007EPSS

Exploits0References1

ATTACKERKB•added 2026/02/02 11:0 p.m.•3 views

CVE-2025-6594

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

5.3AI score0.00007EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/02/02 11:0 p.m.•4 views

CVE-2025-6594 XSS in Special:ApiSandbox

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Special.Apisandbox/ApiSandbox.Js. This issue affects MediaWiki: from 1.27.0 before...

5.3AI score0.00007EPSS

Exploits0References1

CNNVD•added 2025/07/04 12:0 a.m.•2 views

MediaWiki Security Breach

MediaWiki is a set of free and freely available web-based Wiki engines from the American Wikimedia Wikimedia Foundation. The product can be used to deploy internal knowledge management and content management systems. MediaWiki has a security vulnerability that stems from the vulnerability of...

4.7CVSS5.6AI score0.00007EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by