19 matches found
EUVD-2021-28249
Malicious code in bioql PyPI...
EUVD-2025-21047
Malicious code in bioql PyPI...
CVE-2025-53625
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...
Exposure of Private Personal Information to an Unauthorized Actor
Overview universal-omega/dynamic-page-list3 is a The DynamicPageList3 extension allows creating lists of other articles based on their category, namespace, title, references or template usage and include contents or arguments of template calls of those articles into your page. Affected versions o...
CVE-2025-53625
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...
CVE-2025-53625 DynamicPageList3 exposes hidden/suppressed usernames
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...
CVE-2025-53625 DynamicPageList3 exposes hidden/suppressed usernames
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...
CVE-2025-53625 DynamicPageList3 exposes hidden/suppressed usernames
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...
CVE-2025-53625
The CVE-2025-53625 entry concerns the DynamicPageList3 extension for MediaWiki. Several #dpl parameters can leak usernames that were hidden via revision deletion, suppression, or the hideuser block flag. The issue affects DynamicPageList3 prior to version 3.6.4 and is addressed by upgrading to 3....
GHSA-7PGW-Q3QP-6PGQ DynamicPageList3 vulnerability exposes hidden/suppressed usernames
Summary Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. Details The parameters adduser, addauthor, and addlasteditor output the page creator or last editor using the %USER% placeholder. These display the actual...
DynamicPageList3 vulnerability exposes hidden/suppressed usernames
Summary Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. Details The parameters adduser, addauthor, and addlasteditor output the page creator or last editor using the %USER% placeholder. These display the actual...
DynamicPageList3 安全漏洞
DynamicPageList3 is an application by CosmicAlpha Personal Developers. A security vulnerability exists in DynamicPageList3 versions prior to 3.6.4, which stems from multiple dpl parameters that may reveal hidden usernames...
PT-2025-29121 · Mediawiki · Dynamicpagelist3
Name of the Vulnerable Software and Affected Versions: DynamicPageList3 extension versions prior to 3.6.4 Description: The DynamicPageList3 extension for MediaWiki contains an issue where certain parameters can reveal usernames that have been hidden through revision deletion, suppression, or the...
CVE-2021-41118
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. In affected versions unsanitised input of regular expression date within the parameters of the DPL parser function, allowed for the possibility of ReDoS...
CVE-2021-41118
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. In affected versions unsanitised input of regular expression date within the parameters of the DPL parser function, allowed for the possibility of ReDoS...
CVE-2021-41118
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. In affected versions unsanitised input of regular expression date within the parameters of the DPL parser function, allowed for the possibility of ReDoS...
Input validation
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. In affected versions unsanitised input of regular expression date within the parameters of the DPL parser function, allowed for the possibility of ReDoS...
CVE-2021-41118
The DynamicPageList3 (DPL) extension for MediaWiki is affected by a ReDoS in the DPL parser when a regular expression date is unsanitised in certain parameters. This can lead to denial of service under affected versions. The issue is resolved in DPL 3.3.6. If updating is not possible, a workaroun...
CVE-2021-41118 ReDoS in DynamicPageList3
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. In affected versions unsanitised input of regular expression date within the parameters of the DPL parser function, allowed for the possibility of ReDoS...