Lucene search
K

4 matches found

Circl
Circl
added 2025/07/10 2:19 p.m.7 views

CVE-2025-7362

creationtimestamp| type| source ---|---|--- 2025-07-10 14:19:02+00:00| seen| Telegram/6NwfWFZoZsfZZuwDDIpRgfh72XuYeBt7QR530KhqnpG-HoE...

5.4CVSS4.8AI score0.0017EPSS
Exploits0
Cvelist
Cvelist
added 2025/07/08 5:22 p.m.11 views

CVE-2025-7362 MsUpload: Stored Cross-Site Scripting (XSS) via unsanitized msu-continue system message

The MsUpload extension for MediaWiki is vulnerable to stored XSS via the msu-continue system message, which is inserted into the DOM without proper sanitization. The vulnerability occurs in the file upload UI when the same filename is uploaded twice. This issue affects Mediawiki - MsUpload...

0.0017EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/08 5:22 p.m.5 views

CVE-2025-7362 MsUpload: Stored Cross-Site Scripting (XSS) via unsanitized msu-continue system message

The MsUpload extension for MediaWiki is vulnerable to stored XSS via the msu-continue system message, which is inserted into the DOM without proper sanitization. The vulnerability occurs in the file upload UI when the same filename is uploaded twice. This issue affects Mediawiki - MsUpload...

5.8AI score0.0017EPSS
Exploits0References2
CVE
CVE
added 2025/07/08 5:22 p.m.18 views

CVE-2025-7362

Summary : CVE-2025-7362 affects the MediaWiki MsUpload extension. Affected versions are 1.39.X (before 1.39.13), 1.42.X (before 1.42.7), and 1.43.X (before 1.43.2). The issue is a stored XSS in the msu-continue system message that is inserted into the DOM without proper sanitization, occurring in...

5.4CVSS5.5AI score0.0017EPSS
Exploits0References2
Rows per page
Query Builder