Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

642 matches found

RedhatCVE
RedhatCVEadded 2025/04/12 7:21 p.m.28 views

CVE-2025-32698

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/logging/LogPager.Php. This issue affects MediaWiki: before 1.39.12, 1.42.6, 1.43.1...

2.1CVSS6.8AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/12 7:20 p.m.25 views

CVE-2025-32700

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/Api/QueryAbuseLog.Php, includes/Pager/AbuseLogPager.Php, includes/Special/SpecialAbuseLog.Php,...

2.3CVSS6.8AI score0.00322EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/12 7:18 p.m.25 views

CVE-2025-32699

Vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Parsoid.This issue affects MediaWiki: before 1.39.12, 1.42.6, 1.43.1; Parsoid: before 0.16.5, 0.19.2, 0.20.2...

2.1CVSS6.9AI score0.00315EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/04/12 7:17 p.m.25 views

CVE-2025-32697

Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/editpage/IntroMessageBuilder.Php, includes/Permissions/PermissionManager.Php, includes/Permissions/RestrictionStore.Php. This issue affects MediaWiki:...

6.8AI score0.00323EPSS
Exploits0References1
NVD
NVDadded 2025/04/11 5:15 p.m.28 views

CVE-2025-32075

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Tabs Extension allows Code Injection.This issue affects Mediawiki - Tabs Extension: from 1.39 through 1.43...

6.9CVSS0.00334EPSS
Exploits0References2
NVD
NVDadded 2025/04/11 5:15 p.m.27 views

CVE-2025-32080

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in The Wikimedia Foundation Mediawiki - Mobile Frontend Extension allows Shared Resource Manipulation.This issue affects Mediawiki - Mobile Frontend Extension: from 1.39 through 1.43...

6.9CVSS0.00386EPSS
Exploits0References3
NVD
NVDadded 2025/04/11 5:15 p.m.9 views

CVE-2025-32070

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - AJAX Poll Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - AJAX Poll Extension: from 1.39 through 1.43...

5.4CVSS0.00185EPSS
Exploits0References2
NVD
NVDadded 2025/04/11 5:15 p.m.15 views

CVE-2025-32072

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.9CVSS0.00387EPSS
Exploits0References3
OSV
OSVadded 2025/04/11 5:15 p.m.6 views

CVE-2025-32072

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.8AI score
Exploits0References2
Cvelist
Cvelistadded 2025/04/11 4:25 p.m.35 views

CVE-2025-32077 XSSes in Extension:SimpleCalendar

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - Extension:SimpleCalendar allows Cross-Site Scripting XSS.This issue affects Mediawiki - Extension:SimpleCalendar: from 1.39 through 1.43...

6.9CVSS0.00329EPSS
Exploits0References2
CVE
CVEadded 2025/04/11 4:24 p.m.62 views

CVE-2025-32078

CVE-2025-32078 is an XSS flaw in the Wikimedia Foundation MediaWiki Version Compare Extension (versions 1.39–1.43). The issue stems from improper encoding/escaping of output in the extension, enabling Cross-Site Scripting. Affected product: MediaWiki Version Compare Extension; affected versions: ...

6.9CVSS6.2AI score0.00329EPSS
Exploits0References2
CVE
CVEadded 2025/04/11 4:24 p.m.63 views

CVE-2025-32080

CVE-2025-32080 affects the Wikimedia Foundation’s MediaWiki Mobile Frontend Extension, with vulnerable versions 1.39 through 1.43. The issue is described as an exposure of sensitive information to an unauthorized actor that enables shared resource manipulation. Connected sources corroborate the a...

6.9CVSS6.5AI score0.00386EPSS
Exploits0References3
CVE
CVEadded 2025/04/11 4:23 p.m.60 views

CVE-2025-32076

The CVE-2025-32076 entry describes an Improper Input Validation vulnerability in The Wikimedia Foundation MediaWiki Visual Data Extension, affecting versions 1.39 through 1.43. The underlying issue is improper input validation in the extension’s handling of user-provided data, which can be exploi...

6.9CVSS6.6AI score0.00334EPSS
Exploits0References2
CVE
CVEadded 2025/04/11 4:23 p.m.69 views

CVE-2025-32072

CVE-2025-32072 is an Improper Encoding or Escaping of Output issue in MediaWiki Core — Feed Utils, allowing WebView injection. Affected versions are MediaWiki Core Feed Utils from 1.39 through 1.43. The Debian LTS advisory DLA-4249 (mediawiki) indicates remediation via a security update fixing CV...

6.9CVSS6.6AI score0.00387EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/04/11 4:23 p.m.26 views

CVE-2025-32072 HTML injection in feed output from i18n message

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.9CVSS0.00387EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2025/04/11 4:23 p.m.4 views

CVE-2025-32072

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.9CVSS5.2AI score0.00387EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/04/11 4:23 p.m.5 views

CVE-2025-32072 HTML injection in feed output from i18n message

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki Core - Feed Utils allows WebView Injection.This issue affects Mediawiki Core - Feed Utils: from 1.39 through 1.43...

6.9CVSS6.6AI score0.00387EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/04/11 4:22 p.m.5 views

CVE-2025-32073 System message XSS in HTMLTags

Improper Input Validation vulnerability in The Wikimedia Foundation Mediawiki - HTML Tags allows Cross-Site Scripting XSS.This issue affects Mediawiki - HTML Tags: from 1.39 through 1.43...

6AI score0.00185EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/04/11 4:22 p.m.3 views

CVE-2025-32074 XSSes in Extension:ConfirmAccount

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Confirm Account Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Confirm Account Extension: from 1.39 through 1.43...

6.2AI score0.00185EPSS
Exploits0References2
Cvelist
Cvelistadded 2025/04/11 4:22 p.m.21 views

CVE-2025-32074 XSSes in Extension:ConfirmAccount

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Confirm Account Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Confirm Account Extension: from 1.39 through 1.43...

0.00185EPSS
Exploits0References2
Rows per page
Query Builder