CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/07/03 5:15 p.m.•3 views

CVE-2025-53502

Improper Input Validation vulnerability in Wikimedia Foundation Mediawiki - FeaturedFeeds Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - FeaturedFeeds Extension: 1.39.X, 1.42.X, 1.43.X...

6.5CVSS0.00206EPSS

NVD•added 2025/07/03 5:15 p.m.•4 views

CVE-2025-53489

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - GoogleDocs4MW Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - GoogleDocs4MW Extension: from 1.42.X before 1.42.7, from 1.43.X before...

5.6CVSS0.00219EPSS

Cvelist•added 2025/07/03 4:23 p.m.•12 views

CVE-2025-6926 Security Authentication Bypass in CentralAuth

Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication.This issue affects Mediawiki - CentralAuth Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2...

0.00378EPSS

Vulnrichment•added 2025/07/03 4:23 p.m.•16 views

CVE-2025-6926 Security Authentication Bypass in CentralAuth

6.5AI score0.00378EPSS

CVE•added 2025/07/03 4:17 p.m.•19 views

CVE-2025-53500

CVE-2025-53500 concerns a Stored XSS in the Wikimedia Foundation MediaWiki MassEditRegex Extension. The issue stems from improper neutralization of input during web page generation, enabling stored cross-site scripting. Affected versions are: MassEditRegex 1.39.X before 1.39.12, 1.42.X before 1.4...

5.6CVSS6.5AI score0.00242EPSS

Exploits1References2Affected Software1

Cvelist•added 2025/07/03 4:17 p.m.•9 views

CVE-2025-53500 Stored XSS in MassEditRegex

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - MassEditRegex Extension allows Stored XSS.This issue affects Mediawiki - MassEditRegex Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from...

0.00242EPSS

Vulnrichment•added 2025/07/03 4:17 p.m.•3 views

CVE-2025-53500 Stored XSS in MassEditRegex

6.4AI score0.00242EPSS

NVD•added 2025/07/03 4:15 p.m.•4 views

CVE-2025-53490

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - CampaignEvents Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - CampaignEvents Extension: from 1.43.X before 1.43.2...

5.6CVSS0.00219EPSS

Cvelist•added 2025/07/03 4:11 p.m.•8 views

CVE-2025-53502 HTML injection in FeaturedFeeds

0.00206EPSS

CVE•added 2025/07/03 4:11 p.m.•17 views

CVE-2025-53502

CVE-2025-53502 targets Wikimedia Foundation MediaWiki, specifically the FeaturedFeeds Extension. Affected versions are 1.39.x, 1.42.x, and 1.43.x due to Improper Input Validation exposing Cross-Site Scripting (XSS). The issue is described as an XSS vulnerability arising from input handling within...

6.5CVSS6.2AI score0.00206EPSS

Vulnrichment•added 2025/07/03 4:6 p.m.•3 views

CVE-2025-53489 XSS in GoogleDocs4MW

6.2AI score0.00219EPSS

Cvelist•added 2025/07/03 4:4 p.m.•7 views

CVE-2025-53490 Multiple XSS in CampaignEvents

0.00219EPSS

6.5CVSS6AI score0.00206EPSS

Wikimedia Mediawiki FeaturedFeeds Extension 安全漏洞

The Wikimedia Mediawiki FeaturedFeeds Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability exists in Wikimedia Mediawiki FeaturedFeeds Extension versions 1.39.x, 1.42.x, and 1.43.x, which stems from insufficient input validation and could lead to cross-site...

5.6CVSS5.8AI score0.00219EPSS

Wikimedia Mediawiki CampaignEvents Extension 安全漏洞

Wikimedia Mediawiki CampaignEvents Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability exists in Wikimedia Mediawiki CampaignEvents Extension 1.43.2 prior to version 1.43.x. The vulnerability stems from improper input neutralization and could lead to cross-si...

5.6CVSS5.8AI score0.00242EPSS

Wikimedia Mediawiki MassEditRegex Extension 安全漏洞

Wikimedia Mediawiki MassEditRegex Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability exists in Wikimedia Mediawiki MassEditRegex Extension that stems from improper input neutralization and could lead to a stored cross-site scripting attack. The following...

5.6CVSS5.9AI score0.00219EPSS

Wikimedia Mediawiki GoogleDocs4MW Extension 安全漏洞

The Wikimedia Mediawiki GoogleDocs4MW Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability in Wikimedia Mediawiki GoogleDocs4MW Extension version 1.42.7 prior to 1.42.x and 1.43.2 prior to 1.43.x, which stems from improper input neutralization, could lead to a...

CNNVD•added 2025/07/03 12:0 a.m.•6 views

Wikimedia Mediawiki CentralAuth Extension 安全漏洞

The Wikimedia Mediawiki CentralAuth Extension is a Wikimedia Foundation extension for integration and unified login between wiki projects. A security vulnerability exists in Wikimedia Mediawiki CentralAuth Extension versions prior to 1.39.13, prior to 1.42.7, and prior to 1.43.2, which stems from...

8.8CVSS6.5AI score0.00378EPSS

Exploits0References3

NVD•added 2025/07/02 3:15 p.m.•4 views

CVE-2025-53493

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - MintyDocs Extension allows Stored XSS.This issue affects Mediawiki - MintyDocs Extension: from 1.43.X before 1.43.2...

6.5CVSS0.0023EPSS

NVD•added 2025/07/02 3:15 p.m.•4 views

CVE-2025-53494

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation Mediawiki - TwoColConflict Extension allows Stored XSS.This issue affects Mediawiki - TwoColConflict Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, fr...

6.5CVSS0.0023EPSS