CVE-2026-46721

Summary (CVE-2026-46721): The issue is in the TYPO3 extension “Frontend User Registration” (sf_register). The create/edit flows allow submitting arbitrary user properties and do not enforce frontend access control on user-group assignment, enabling an attacker to assign any frontend user group to...

CVE-2025-32080

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43...

CVE-2025-32080

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43...

CVE-2025-32080

CVE-2025-32080 affects the Wikimedia Foundation’s MediaWiki Mobile Frontend Extension, with vulnerable versions 1.39 through 1.43. The issue is described as an exposure of sensitive information to an unauthorized actor that enables shared resource manipulation. Connected sources corroborate the a...

CVE-2025-32080 Cross-origin data leak in mobilefrontend via lazy load images

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43...

CVE-2025-32080 Cross-origin data leak in mobilefrontend via lazy load images

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43...

MediaWiki 信息泄露漏洞

MediaWiki is a suite of free and freely available web-based Wiki engines from the Wikimedia Foundation in the United States. The product can be used to deploy in-house knowledge management and content management systems. A security vulnerability exists in MediaWiki - Mobile Frontend Extension...

PT-2025-16144 · Mediawiki · Mediawiki Mobilefrontend Extension

Name of the Vulnerable Software and Affected Versions: Mediawiki - Mobile Frontend Extension versions 1.39 through 1.43 Description: The issue affects the Mediawiki - Mobile Frontend Extension, allowing exposure of sensitive information to an unauthorized actor. This enables shared resource...

Improper access control

Unspecified vulnerability in the DAM Frontend damfrontend extension 0.1.0 and earlier for TYPO3 has unknown impact and attack vectors related to "broken access control."...