Lucene search
+L

3 matches found

CVE
CVE
added 2025/04/22 5:15 p.m.58 views

CVE-2025-32964

CVE-2025-32964 affects the ManageWiki MediaWiki extension. The root cause: before commit 00bebea, enabling a conflicting extension could cause a restricted extension to be auto-disabled even if the user lacked the ManageWiki-restricted right. The issue has been patched in commit 00bebea. Practica...

4.6CVSS4.6AI score0.00193EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/22 5:15 p.m.5 views

CVE-2025-32964 ManageWiki vulnerable to permission bypass when disabling extensions requiring certain permissions in Special:ManageWiki/extensions

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 00bebea, when enabling a conflicting extension, a restricted extension would be automatically disabled even if the user did not hold the ManageWiki-restricted right. This issue has been patched in commit 00bebea. ...

4.6CVSS6.9AI score0.00193EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/22 5:15 p.m.42 views

CVE-2025-32964 ManageWiki vulnerable to permission bypass when disabling extensions requiring certain permissions in Special:ManageWiki/extensions

ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 00bebea, when enabling a conflicting extension, a restricted extension would be automatically disabled even if the user did not hold the ManageWiki-restricted right. This issue has been patched in commit 00bebea. ...

4.6CVSS0.00193EPSS
Exploits0References2
Rows per page
Query Builder