CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

NVD•added 2023/11/03 5:15 a.m.•16 views

CVE-2023-45360

An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers...

5.4CVSS5.9AI score0.00393EPSS

Exploits1References3

Prion•added 2023/11/03 5:15 a.m.•20 views

Design/Logic Flaw

4.9CVSS5.3AI score0.00393EPSS

Exploits1References1Affected Software1

Debian CVE•added 2023/11/03 12:0 a.m.•24 views

CVE-2023-45360

5.4CVSS5.2AI score0.00393EPSS

Exploits1

Debian CVE•added 2023/11/03 12:0 a.m.•36 views

CVE-2023-45362

An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. diff-multi-sameuser aka "X intermediate revisions by the same user not shown" ignores username suppression. This is an information leak...

4.3CVSS4.4AI score0.00392EPSS

Exploits1

Vulnrichment•added 2023/10/09 12:0 a.m.•14 views

CVE-2023-45372

An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. During item merging, ItemMergeInteractor does not have an edit filter running e.g., AbuseFilter...

7.2AI score0.00127EPSS

Exploits0References2

Cvelist•added 2023/10/09 12:0 a.m.•19 views

CVE-2023-45371

An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is no rate limit for merging items...

7.8AI score0.00182EPSS

Exploits0References2

Positive Technologies•added 2023/10/08 12:0 a.m.•3 views

PT-2023-8950 · Mediawiki +2 · Mediawiki +3

Name of the Vulnerable Software and Affected Versions: MediaWiki PageTriage extension versions prior to 1.35.12 MediaWiki PageTriage extension versions 1.36.x through 1.39.x before 1.39.5 MediaWiki PageTriage extension versions 1.40.x before 1.40.1 Description: An issue was discovered in the...

9.8CVSS6.1AI score0.11025EPSS

Exploits27References107

Positive Technologies•added 2023/10/08 12:0 a.m.•2 views

PT-2023-8945 · Mediawiki +2 · Mediawiki Sportsteams Extension +2

Name of the Vulnerable Software and Affected Versions: MediaWiki SportsTeams extension versions 1.35.x through 1.35.11 MediaWiki SportsTeams extension versions 1.36.x through 1.39.4 MediaWiki SportsTeams extension versions 1.40.x through 1.40.0 Description: An issue was discovered in the...

9.8CVSS6AI score0.11025EPSS

Exploits27References108

Positive Technologies•added 2023/10/08 12:0 a.m.•2 views

PT-2023-8947 · Mediawiki +2 · Wikibase Extension For Mediawiki +2

Name of the Vulnerable Software and Affected Versions: Wikibase extension for MediaWiki versions prior to 1.35.12 Wikibase extension for MediaWiki versions 1.36.x through 1.39.x before 1.39.5 Wikibase extension for MediaWiki versions 1.40.x before 1.40.1 Description: The issue is related to the...

9.8CVSS5.9AI score0.11025EPSS

Exploits27References108

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by