CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

292 matches found

RedhatCVE•added 2026/01/09 11:23 a.m.•1 views

CVE-2021-31553

An issue was discovered in the CheckUser extension for MediaWiki through 1.35.2. MediaWiki usernames with trailing whitespace could be stored in the culog database table such that denial of service occurred for certain CheckUser extension pages and functionality. For example, the attacker could...

6.5CVSS6.7AI score0.00672EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:19 a.m.•5 views

CVE-2019-18611

An issue was discovered in the CheckUser extension through 1.34 for MediaWiki. Certain sensitive information within oversighted edit summaries made available via the MediaWiki API was potentially visible to users with various levels of access to this extension. Said users should not have been abl...

6.5CVSS6.6AI score0.00335EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:33 a.m.•11 views

CVE-2019-16529

An issue was discovered in the CheckUser extension through 1.35.0 for MediaWiki. Oversighted edit summaries are still visible in CheckUser results in violation of MediaWiki's permissions model...

5.3CVSS7AI score0.00179EPSS

Exploits0References1

RedhatCVE•added 2025/12/18 11:36 p.m.•1 views

CVE-2025-14834

A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown function of the file /checkuser.php. Executing a manipulation of the argument Username can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public...

8.8CVSS6.4AI score0.00027EPSS

Exploits1References1

NVD•added 2025/12/17 11:15 p.m.•2 views

CVE-2025-14834

8.8CVSS0.00027EPSS

Exploits1References5

OSV•added 2025/12/17 11:15 p.m.•1 views

CVE-2025-14834

8.8CVSS5.8AI score0.00027EPSS

Exploits1References5

EUVD•added 2025/12/17 11:2 p.m.•1 views

EUVD-2025-204008

A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown function of the file /checkuser.php. Executing manipulation of the argument Username can lead to sql injection. The attack can be launched remotely. The exploit has been made available to the public a...

6.5CVSS6.5AI score0.00027EPSS

Exploits1References6

CVE•added 2025/12/17 11:2 p.m.•7 views

CVE-2025-14834

CVE-2025-14834 affects code-projects Simple Stock System 1.0. The vulnerability resides in the /checkuser.php function, where manipulating the Username parameter can cause a SQL injection. Exploitation can be performed remotely, and publicly available exploit code has circulated. Several connecte...

8.8CVSS6.4AI score0.00027EPSS

Exploits1References5Affected Software1

ATTACKERKB•added 2025/12/17 11:2 p.m.•2 views

CVE-2025-14834

8.8CVSS5.5AI score0.00027EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2025/12/17 11:2 p.m.•1 views

CVE-2025-14834 code-projects Simple Stock System checkuser.php sql injection

6.5CVSS6.4AI score0.00027EPSS

Exploits1References5

CNNVD•added 2025/12/17 12:0 a.m.•1 views

Code-Projects Simple Stock System SQL注入漏洞

Code-Projects Simple Stock System is a Code-Projects open source simple stock system. A SQL injection vulnerability exists in code-projects Simple Stock System version 1.0, which stems from an incorrect manipulation of the parameter Username in the file /checkuser.php, which could lead to a SQL...

8.8CVSS6.9AI score0.00027EPSS

Exploits1References6

Positive Technologies•added 2025/12/17 12:0 a.m.•3 views

PT-2025-51978

Name of the Vulnerable Software and Affected Versions code-projects Simple Stock System version 1.0 Description A weakness exists in code-projects Simple Stock System 1.0. This issue affects an unknown function within the /checkuser.php file. Manipulation of the Username argument can lead to SQL...

8.8CVSS6.4AI score0.00027EPSS

Exploits1References9

RedhatCVE•added 2025/10/22 4:13 a.m.•6 views

CVE-2025-62699

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Translate Extension allows Footprinting. Translate extension appears to use jobs to make edits to translation pages. This causes the CheckUser tool to log the wrong IP and User-Agent...

6.9CVSS7AI score0.00058EPSS

Exploits0References1

NVD•added 2025/10/21 4:16 a.m.•1 views

CVE-2025-62699

6.9CVSS0.00058EPSS

Exploits0References3

OSV•added 2025/10/21 4:16 a.m.•0 views

UBUNTU-CVE-2025-62699

6.9CVSS5.8AI score0.00058EPSS

Exploits0References5

Vulnrichment•added 2025/10/21 3:48 a.m.•2 views

CVE-2025-62699 Special:Translate tool does not use the correct IP and User-Agent in the CheckUser tool

6.9CVSS6.6AI score0.00058EPSS

Exploits0References3

EUVD•added 2025/10/21 3:48 a.m.•1 views

EUVD-2025-35133

6.9CVSS6.4AI score0.00058EPSS

Exploits0References4

Cvelist•added 2025/10/21 3:48 a.m.•6 views

CVE-2025-62699 Special:Translate tool does not use the correct IP and User-Agent in the CheckUser tool

6.9CVSS0.00058EPSS

Exploits0References3

CVE•added 2025/10/21 3:48 a.m.•7 views

CVE-2025-62699

The CVE-2025-62699 issue affects the Wikimedia Foundation MediaWiki Translate Extension (master before 1.39). The root cause is the Translate Extension’s use of jobs to edit translation pages, which causes the CheckUser tool to log the wrong IP and User-Agent, making these edits un-auditable. Thi...

6.9CVSS6.6AI score0.00058EPSS

Exploits0References3

CNNVD•added 2025/10/21 12:0 a.m.•3 views

MediaWiki - Translate Extension 安全漏洞

MediaWiki - Translate Extension is an open source translation extension for MediaWiki. A security vulnerability exists in Mediawiki - Translate Extension master version to versions prior to 1.39, which stems from the CheckUser tool logging the wrong IP and User-Agent, which could lead to the...

6.9CVSS6.2AI score0.00058EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by