Lucene search
K

341 matches found

Vulnrichment
Vulnrichment
added 2026/02/03 12:55 a.m.4 views

CVE-2025-61652 Action API discussiontoolspageinfo does not check for authorizeRead for the page

Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from before 1.43.4, 1.44.1...

6.9CVSS5.3AI score0.00253EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:27 a.m.6 views

EUVD-2025-206638

Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php. This issue affects OATHAuth: from before 1.39.14, 1.43.4, 1.44.1...

5.3AI score0.00356EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:27 a.m.5 views

CVE-2025-11173

Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php. This issue affects OATHAuth: from before 1.39.14, 1.43.4, 1.44.1...

5.2AI score0.00356EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/03 12:17 a.m.4 views

EUVD-2025-206641

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from 7cedd58781d261f110651b6af4f41d2d11ae7309...

4.8CVSS5.3AI score0.00313EPSS
Exploits0References1
NVD
NVD
added 2026/02/03 12:16 a.m.15 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS0.00293EPSS
Exploits0References1
OSV
OSV
added 2026/02/03 12:16 a.m.2 views

CVE-2025-61637

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Action/mediawiki.Action.Edit.Preview.Js, resources/src/mediawiki.Page.Preview.Js...

4.8CVSS5.9AI score
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:15 a.m.6 views

EUVD-2025-206642

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 12:15 a.m.10 views

CVE-2025-61650

CVE-2025-61650 is an XSS vulnerability in Wikimedia Foundation CheckUser. Affected component: CheckUserUserInfoCardService.Php (file path: src/Services/CheckUserUserInfoCardService.Php). The issue arises in web page generation due to improper input neutralization. Affected scope: CheckUser before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:2 a.m.6 views

EUVD-2025-206645

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:2 a.m.6 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/03 12:2 a.m.36 views

CVE-2025-61647 UserInfoCard: Don't allow access to information about users who are suppressed if you don't have suppressor rights

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.10 views

MediaWiki 安全漏洞

MediaWiki is a free and open-source web-based wiki engine developed by the Wikimedia Foundation in the United States. This product can be used to deploy internal knowledge management and content management systems. Versions of Wikimedia Foundation MediaWiki prior to 1.44.1 contained security...

6.1CVSS5.6AI score0.00204EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.19 views

PT-2026-5733

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.10 views

PT-2026-5740

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/GlobalContributions/GlobalContributionsPager.Php. This issue affects CheckUser: from before 1.43.4, 1.44.1...

5.3CVSS5.3AI score0.00231EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/02 11:26 p.m.5 views

CVE-2025-61635

Vulnerability in Wikimedia Foundation ConfirmEdit. This vulnerability is associated with program files includes/FancyCaptcha/ApiFancyCaptchaReload.Php. This issue affects ConfirmEdit:...

5.3AI score0.00356EPSS
Exploits0References2
OSV
OSV
added 2026/02/02 11:16 p.m.11 views

UBUNTU-CVE-2025-6589

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php. This issue affects MediaWiki: = 1.42.0...

2.1CVSS5.8AI score0.00429EPSS
Exploits0References5
OSV
OSV
added 2026/02/02 11:16 p.m.7 views

UBUNTU-CVE-2025-6595

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MultimediaViewer.This issue affects MultimediaViewer: from before 1.39.13, 1.42.7, 1.43.2, 1.44.0...

4.7CVSS5.8AI score0.0027EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/02/02 11:2 p.m.4 views

CVE-2025-6592 Creating a permanent account from a temporary account associates temp username and IP address with real username in AbuseLog

Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue affects AbuseFilter: from fe0b1cb9e9691faf4d8d9bd80646589f6ec37615 before 1.43.2, 1.44.0...

2.1CVSS5.3AI score0.00359EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/02 10:59 p.m.3 views

CVE-2025-6595

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MultimediaViewer.This issue affects MultimediaViewer: from before 1.39.13, 1.42.7, 1.43.2, 1.44.0...

5.3AI score0.0027EPSS
Exploits0References1
NVD
NVD
added 2026/01/09 12:15 a.m.7 views

CVE-2026-22714

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in The Wikimedia Foundation Mediawiki - Monaco Skin allows Cross-Site Scripting XSS.This issue affects Mediawiki - Monaco Skin: 1.45, 1.44, 1.43, 1.39...

2.3CVSS0.00335EPSS
Exploits0References2
Rows per page
Query Builder