Lucene search
K

306 matches found

Cvelist
Cvelist
added 2026/02/03 12:15 a.m.29 views

CVE-2025-61650 UserInfoCard is vulnerable to message key stored XSS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from before...

4.8CVSS0.00247EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/03 12:15 a.m.3 views

CVE-2025-61650 UserInfoCard is vulnerable to message key stored XSS

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:15 a.m.5 views

EUVD-2025-206642

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 12:15 a.m.10 views

CVE-2025-61650

CVE-2025-61650 is an XSS vulnerability in Wikimedia Foundation CheckUser. Affected component: CheckUserUserInfoCardService.Php (file path: src/Services/CheckUserUserInfoCardService.Php). The issue arises in web page generation due to improper input neutralization. Affected scope: CheckUser before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/03 12:2 a.m.4 views

EUVD-2025-206645

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:2 a.m.6 views

CVE-2025-61647

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/03 12:2 a.m.4 views

CVE-2025-61647 UserInfoCard: Don't allow access to information about users who are suppressed if you don't have suppressor rights

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/03 12:2 a.m.32 views

CVE-2025-61647 UserInfoCard: Don't allow access to information about users who are suppressed if you don't have suppressor rights

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS0.00293EPSS
Exploits0References1
CVE
CVE
added 2026/02/03 12:2 a.m.13 views

CVE-2025-61647

Technical details about CVE-2025-61647 are not publicly provided in the supplied documents. Monitor for updates from the referenced sources; current entries reiterate the vulnerability but do not disclose affected products, versions, or remediation steps.

2CVSS5.3AI score0.00293EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-5739

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js. This issue affects CheckUser: from...

5.3AI score0.00187EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-5740

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/GlobalContributions/GlobalContributionsPager.Php. This issue affects CheckUser: from before 1.43.4, 1.44.1...

5.3CVSS5.3AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.9 views

PT-2026-5736

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/components/ShowIPButton.Vue,...

5.3AI score0.00144EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.7 views

Wikimedia CheckUser 安全漏洞

Wikimedia CheckUser is a advanced investigation tool of the Wikimedia Foundation designed to combat disruptive behavior. Versions of Wikimedia CheckUser prior to 1.44.1 contained a security vulnerability caused by improper input handling, which could lead to cross-site scripting attacks...

6.1CVSS5.6AI score0.00144EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.8 views

PT-2026-5737

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from 7cedd58781d261f110651b6af4f41d2d11ae7309...

4.8CVSS5.3AI score0.00313EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.7 views

Wikimedia CheckUser 安全漏洞

Wikimedia CheckUser is a advanced investigation tool of the Wikimedia Foundation designed to combat disruptive behavior. Versions of Wikimedia CheckUser prior to 1.44.1 contained a security vulnerability caused by improper input handling, which could lead to cross-site scripting attacks...

6.1CVSS5.6AI score0.00187EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.14 views

PT-2026-5733

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4...

2CVSS5.3AI score0.00293EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.10 views

PT-2026-5738

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php. This issue affects CheckUser: from before...

4.8CVSS5.3AI score0.00247EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.14 views

Wikimedia CheckUser 安全漏洞

Wikimedia CheckUser is a advanced investigation tool of the Wikimedia Foundation designed to combat disruptive behavior. Versions of Wikimedia CheckUser prior to 1.39.14, 1.43.4, and 1.44.1 contained security vulnerabilities, which were caused by a flaw in the includes/Mail/UserMailer.Php file...

8.8CVSS5.8AI score0.00304EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

Wikimedia CheckUser 安全漏洞

Wikimedia CheckUser is a advanced investigation tool of the Wikimedia Foundation designed to combat disruptive behavior. There is a security vulnerability in Wikimedia CheckUser, which stems from a problem with the program file src/Api/Rest/Handler/UserInfoHandler.Php...

2CVSS5.8AI score0.00293EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.9 views

Wikimedia CheckUser 安全漏洞

Wikimedia CheckUser is a advanced investigation tool of the Wikimedia Foundation designed to combat disruptive behavior. There is a security vulnerability in Wikimedia CheckUser, which stems from the lack of checks to ensure that the current user operating the system actually has the permission t...

4.8CVSS5.8AI score0.00313EPSS
Exploits0References1
Rows per page
Query Builder