82 matches found
CVE-2025-62667
CVE-2025-62667 is a stored XSS vulnerability in the MediaWiki GrowthExperiments Extension. The issue arises from improper neutralization of user-supplied input during web page generation, allowing injected scripts/HTML via the extension’s handling of article extracts. Affected component: GrowthEx...
CVE-2025-62667 Stored XSS through article extracts in GrowthExperiments
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments Extension allows Stored XSS.This issue affects Mediawiki - GrowthExperiments Extension: from master before 1.39...
CVE-2025-62668 Insufficient permission checks in action=growthsetmentor
Incorrect Default Permissions vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments Extension allows Resource Leak Exposure.This issue affects Mediawiki - GrowthExperiments Extension: from master before 1.39...
CVE-2025-62668
CVE-2025-62668 affects the Wikimedia Foundation MediaWiki GrowthExperiments Extension. The issue is an Incorrect Default Permissions vulnerability that leads to Resource Leak Exposure due to improperly set default permissions. Affected scope is MediaWiki GrowthExperiments Extension from master be...
CVE-2025-62668 Insufficient permission checks in action=growthsetmentor
Incorrect Default Permissions vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments Extension allows Resource Leak Exposure.This issue affects Mediawiki - GrowthExperiments Extension: from master before 1.39...
Mediawiki - GrowthExperiments Extension 安全漏洞
Mediawiki - GrowthExperiments Extension is an extension to MediaWiki designed to increase new user engagement and the quality of content contributions through a task system, a recommendation mechanism and a mentor feature. A default permission error vulnerability exists in Mediawiki -...
EUVD-2025-10817
Malicious code in bioql PyPI...
EUVD-2023-32743
Malicious code in bioql PyPI...
EUVD-2023-32740
Malicious code in bioql PyPI...
EUVD-2021-29032
Malicious code in bioql PyPI...
EUVD-2022-41739
Malicious code in bioql PyPI...
EUVD-2023-27047
Malicious code in bioql PyPI...
CVE-2023-29140
An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for revdeleted...
CVE-2025-32079
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments allows HTTP DoS.This issue affects Mediawiki - GrowthExperiments: from 1.39 through 1.43...
CVE-2025-32079
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments allows HTTP DoS.This issue affects Mediawiki - GrowthExperiments: from 1.39 through 1.43...
CVE-2025-32079
The CVE-2025-32079 affects the MediaWiki GrowthExperiments extension for MediaWiki, specifically versions 1.39–1.43, due to improper input validation that can enable HTTP DoS. The issue is documented across multiple feeds (NVD, Red Hat, CIRCL, etc.). No exploitation status is provided in the conn...
CVE-2025-32079 Saving the right content to MediaWiki:GrowthMentors.json can take down the site
Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments allows HTTP DoS.This issue affects Mediawiki - GrowthExperiments: from 1.39 through 1.43...
PT-2025-16143 · Unknown +1 · Growthexperiments +1
Name of the Vulnerable Software and Affected Versions: Mediawiki - GrowthExperiments versions 1.39 through 1.43 Description: The issue is related to an Improper Input Validation vulnerability, which allows for HTTP Denial of Service DoS. This vulnerability affects the Mediawiki - GrowthExperiment...
BIT-MEDIAWIKI-2021-42042
An issue was discovered in SpecialEditGrowthConfig in the GrowthExperiments extension in MediaWiki through 1.36.2. The growthexperiments-edit-config-error-invalid-title MediaWiki message was not being properly sanitized and allowed for the injection and execution of HTML and JavaScript...
BIT-MEDIAWIKI-2021-42044
An issue was discovered in the Mentor dashboard in the GrowthExperiments extension in MediaWiki through 1.36.2. The Growthexperiments-mentor-dashboard-mentee-overview-add-filter-total-edits-headline, growthexperiments-mentor-dashboard-mentee-overview-add-filter-starred-headline,...