Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

642 matches found

Vulnrichment
Vulnrichmentadded 2026/02/03 12:57 a.m.3 views

CVE-2025-61653 Extension:TextExtracts does not check for authorizeRead when returning extracts

Vulnerability in Wikimedia Foundation TextExtracts. This vulnerability is associated with program files includes/ApiQueryExtracts.Php. This issue affects TextExtracts: from before 1.39.14, 1.43.4, 1.44.1...

6.9CVSS5.3AI score0.00332EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/03 12:57 a.m.3 views

EUVD-2025-206655

Vulnerability in Wikimedia Foundation TextExtracts. This vulnerability is associated with program files includes/ApiQueryExtracts.Php. This issue affects TextExtracts: from before 1.39.14, 1.43.4, 1.44.1...

6.9CVSS5.3AI score0.00332EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/03 12:55 a.m.32 views

CVE-2025-61652 Action API discussiontoolspageinfo does not check for authorizeRead for the page

Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from before 1.43.4, 1.44.1...

6.9CVSS0.00253EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/03 12:55 a.m.3 views

CVE-2025-61652

Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from before 1.43.4, 1.44.1...

6.9CVSS5.2AI score0.00253EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/03 12:55 a.m.4 views

CVE-2025-61652 Action API discussiontoolspageinfo does not check for authorizeRead for the page

Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from before 1.43.4, 1.44.1...

6.9CVSS5.3AI score0.00253EPSS
Exploits0References1
CVE
CVEadded 2026/02/03 12:55 a.m.14 views

CVE-2025-61652

CVE-2025-61652 affects Wikimedia Foundation DiscussionTools; vulnerable in DiscussionsTools prior to 1.43.4 and 1.44.1. Connected advisories corroborate affected versions across Debian/Ubuntu and OSV records. The Debian security advisory notes fixes inMediaWiki packages: for the stable/trixie rel...

6.9CVSS5.2AI score0.00253EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/03 12:55 a.m.3 views

EUVD-2025-206656

Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from before 1.43.4, 1.44.1...

6.9CVSS5.3AI score0.00253EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/03 12:53 a.m.4 views

CVE-2025-61651

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js. This issue affects CheckUser: from...

5.3AI score0.00187EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/03 12:53 a.m.4 views

CVE-2025-61651 i18n XSS through Special:CheckUser CheckUser helper

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js. This issue affects CheckUser: from...

5.3AI score0.00187EPSS
Exploits0References1
EUVD
EUVDadded 2026/02/03 12:53 a.m.3 views

EUVD-2025-206637

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js. This issue affects CheckUser: from...

5.3AI score0.00187EPSS
Exploits0References1
CVE
CVEadded 2026/02/03 12:27 a.m.16 views

CVE-2025-11173

CVE-2025-11173 affects Wikimedia Foundation OATHAuth via the file src/Special/OATHManage.Php. The issue impacts OATHAuth versions before 1.39.14, 1.43.4, and 1.44.1. Debian advisories (DSA-6085-1) indicate fixes are available: oldstable (bookworm) upgrades to 1:1.39.17-1~deb12u1, stable (trixie) ...

5.3AI score0.00356EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/02/03 12:27 a.m.5 views

CVE-2025-11173 Reauth for enabling 2FA can be bypassed by submitting a form

Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php. This issue affects OATHAuth: from before 1.39.14, 1.43.4, 1.44.1...

5.3AI score0.00356EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/02/03 12:27 a.m.5 views

CVE-2025-11173

Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php. This issue affects OATHAuth: from before 1.39.14, 1.43.4, 1.44.1...

5.2AI score0.00356EPSS
Exploits0References3
EUVD
EUVDadded 2026/02/03 12:27 a.m.4 views

EUVD-2025-206638

Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php. This issue affects OATHAuth: from before 1.39.14, 1.43.4, 1.44.1...

5.3AI score0.00356EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/02/03 12:19 a.m.3 views

CVE-2025-61648

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/components/ShowIPButton.Vue,...

5.3AI score0.00144EPSS
Exploits0References2
EUVD
EUVDadded 2026/02/03 12:19 a.m.3 views

EUVD-2025-206640

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/components/ShowIPButton.Vue,...

5.3AI score0.00144EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/03 12:17 a.m.2 views

CVE-2025-61649

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from 7cedd58781d261f110651b6af4f41d2d11ae7309...

4.8CVSS5.3AI score0.00313EPSS
Exploits0References2
EUVD
EUVDadded 2026/02/03 12:17 a.m.3 views

EUVD-2025-206641

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from 7cedd58781d261f110651b6af4f41d2d11ae7309...

4.8CVSS5.3AI score0.00313EPSS
Exploits0References1
NVD
NVDadded 2026/02/03 12:16 a.m.11 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS0.00293EPSS
Exploits0References1
OSV
OSVadded 2026/02/03 12:16 a.m.1 views

CVE-2025-61637

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files resources/src/mediawiki.Action/mediawiki.Action.Edit.Preview.Js, resources/src/mediawiki.Page.Preview.Js...

4.8CVSS5.9AI score
Exploits0References1
Rows per page
Query Builder