CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2026/02/03 12:16 a.m.•3 views

CVE-2025-61642

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/CodexHTMLForm.Php, includes/htmlform/fields/HTMLButtonField.Php. This issue affects...

6.1CVSS0.00007EPSS

Exploits0References1

NVD•added 2026/02/03 12:16 a.m.•4 views

CVE-2025-61636

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLButtonField.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4,...

4.8CVSS0.00007EPSS

Exploits0References1

OSV•added 2026/02/03 12:16 a.m.•0 views

UBUNTU-CVE-2025-61636

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLButtonField.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4,...

4.8CVSS5.8AI score0.00007EPSS

Exploits0References4

OSV•added 2026/02/03 12:16 a.m.•1 views

UBUNTU-CVE-2025-61642

6.1CVSS5.8AI score0.00007EPSS

Exploits0References4

ATTACKERKB•added 2026/02/02 11:36 p.m.•2 views

CVE-2025-61642

5.3AI score0.00007EPSS

Exploits0References2

Cvelist•added 2026/02/02 11:36 p.m.•26 views

CVE-2025-61642 Stored XSS through system messages provided to CodexHtmlForms

0.00007EPSS

Exploits0References1

CVE•added 2026/02/02 11:36 p.m.•15 views

CVE-2025-61642

CVE-2025-61642 is a MediaWiki XSS vulnerability (improper input neutralization during web page generation) affecting MediaWiki before 1.39.14, 1.43.4, and 1.44.1, linked to CodexHTMLForm.Php and HTMLButtonField.Php. Public details across Red Hat and Debian advisories confirm remote XSS with infor...

6.1CVSS5.2AI score0.00007EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/02/02 11:23 p.m.•1 views

CVE-2025-61636 Codex Special:Block vulnerable to message key XSS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLButtonField.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4,...

5.3AI score0.00007EPSS

Exploits0References1

Cvelist•added 2026/02/02 11:23 p.m.•25 views

CVE-2025-61636 Codex Special:Block vulnerable to message key XSS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLButtonField.Php. This issue affects MediaWiki: from before 1.39.14, 1.43.4,...

0.00007EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by