Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-16086

Malware in sbrugna...

9.4CVSS7.5AI score0.01211EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-12404

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00214EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-22470

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00448EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/04/26 9:7 p.m.15 views

CVE-2025-43861

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the "Review Changes"...

5.4CVSS5.7AI score0.00214EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/26 12:5 a.m.9 views

CVE-2025-32964

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 00bebea, when enabling a conflicting extension, a restricted extension would be automatically disabled even if the user did not hold the ManageWiki-restricted right. This issue has been patched in commit 00bebea. ...

4.6CVSS6.7AI score0.00182EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 5:18 p.m.5 views

CVE-2025-32956

ManageWiki is a MediaWiki extension allowing users to manage wikis. Versions before commit f504ed8, are vulnerable to SQL injection when renaming a namespace in Special:ManageWiki/namespaces when using a page prefix namespace name, which is the current namespace you are renaming with an injection...

8CVSS7.7AI score0.00547EPSS
Exploits1References1
NVD
NVD
added 2025/04/24 9:15 p.m.29 views

CVE-2025-43861

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the "Review Changes"...

5.4CVSS0.00214EPSS
Exploits1References2
OSV
OSV
added 2025/04/24 8:49 p.m.14 views

CVE-2025-43861 ManageWiki Vulnerable to Self-XSS in review dialog via unsanitized field reflection

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the "Review Changes"...

4.4CVSS6AI score0.00214EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/22 5:15 p.m.34 views

CVE-2025-32964 ManageWiki vulnerable to permission bypass when disabling extensions requiring certain permissions in Special:ManageWiki/extensions

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 00bebea, when enabling a conflicting extension, a restricted extension would be automatically disabled even if the user did not hold the ManageWiki-restricted right. This issue has been patched in commit 00bebea. ...

4.6CVSS0.00182EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.6 views

PT-2025-17560 · Mediawiki · Managewiki

Name of the Vulnerable Software and Affected Versions: ManageWiki affected versions not specified Description: The issue concerns the ManageWiki MediaWiki extension, which allows users to manage wikis. Prior to a specific commit 00bebea, when a conflicting extension was enabled, a restricted...

4.6CVSS5.9AI score0.00182EPSS
Exploits0References7
Prion
Prion
added 2024/02/09 11:15 p.m.13 views

Cross site scripting

ManageWiki is a MediaWiki extension allowing users to manage wikis. Special:ManageWiki does not escape escape interface messages on the columns and help keys on the form descriptor. An attacker may exploit this and would have a cross site scripting attack vector. Exploiting this on-wiki requires...

4.7CVSS6.7AI score0.00448EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/09 12:0 a.m.7 views

PT-2024-20753 · Mediawiki · Managewiki

Name of the Vulnerable Software and Affected Versions: ManageWiki affected versions not specified Description: ManageWiki is a MediaWiki extension that allows users to manage wikis. The issue arises because Special:ManageWiki does not properly escape interface messages on the columns and help key...

6.5CVSS6.5AI score0.00448EPSS
Exploits0References10
CVE
CVE
added 2021/04/28 9:25 p.m.55 views

CVE-2021-29483

CVE-2021-29483 affects the ManageWiki extension for MediaWiki. The wikiconfig API leaked private configuration variable values to all users. The issue has been patched in the ManageWiki patch linked in the CVE and advisories; if patching isn’t possible, a workaround is to disable the wikiconfig A...

9.4CVSS7.7AI score0.01211EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/04/28 12:0 a.m.19 views

CVE-2021-29483

ManageWiki is an extension to the MediaWiki project. The ‘wikiconfig’ API leaked the value of private configuration variables set through the ManageWiki variable to all users. This has been patched by https://github.com/miraheze/ManageWiki/compare/99f3b2c8af18…befb83c66f5b.patch. If you are unabl...

9.4CVSS2.3AI score0.01211EPSS
Exploits0References4
Rows per page
Query Builder