Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/07/06 6:25 p.m.15 views

CVE-2025-53485

SetTranslationHandler.php does not validate that the user is an election admin, allowing any even unauthenticated user to change election-related translation text. While partially broken in newer MediaWiki versions, the check is still missing. This issue affects Mediawiki - SecurePoll extension:...

7.5CVSS6.5AI score0.00252EPSS
Exploits0References1
NVD
NVD
added 2025/07/04 6:15 p.m.13 views

CVE-2025-53485

SetTranslationHandler.php does not validate that the user is an election admin, allowing any even unauthenticated user to change election-related translation text. While partially broken in newer MediaWiki versions, the check is still missing. This issue affects Mediawiki - SecurePoll extension:...

7.5CVSS0.00252EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/04 5:39 p.m.4 views

CVE-2025-53485 SecurePoll: Unauthorized access to SetTranslationHandler allows arbitrary text changes

SetTranslationHandler.php does not validate that the user is an election admin, allowing any even unauthenticated user to change election-related translation text. While partially broken in newer MediaWiki versions, the check is still missing. This issue affects Mediawiki - SecurePoll extension:...

7.1AI score0.00252EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/04 5:39 p.m.14 views

CVE-2025-53485 SecurePoll: Unauthorized access to SetTranslationHandler allows arbitrary text changes

SetTranslationHandler.php does not validate that the user is an election admin, allowing any even unauthenticated user to change election-related translation text. While partially broken in newer MediaWiki versions, the check is still missing. This issue affects Mediawiki - SecurePoll extension:...

0.00252EPSS
Exploits0References2
CVE
CVE
added 2025/07/04 5:39 p.m.27 views

CVE-2025-53485

The CVE concerns the MediaWiki SecurePoll extension where SetTranslationHandler.php does not validate that the user is an election admin. This allows any (even unauthenticated) user to change election-related translation text. Affects SecurePoll versions: 1.39.X before 1.39.13; 1.42.X before 1.42...

7.5CVSS6.5AI score0.00252EPSS
Exploits0References2
Rows per page
Query Builder