CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-20664

Malicious code in bioql PyPI...

5.4CVSS6.6AI score0.00084EPSS

Exploits0References2

NVD•added 2025/07/08 6:15 p.m.•3 views

CVE-2025-7362

The MsUpload extension for MediaWiki is vulnerable to stored XSS via the msu-continue system message, which is inserted into the DOM without proper sanitization. The vulnerability occurs in the file upload UI when the same filename is uploaded twice. This issue affects Mediawiki - MsUpload...

5.4CVSS0.00084EPSS

Exploits0References2

Cvelist•added 2025/07/08 5:22 p.m.•5 views

CVE-2025-7362 MsUpload: Stored Cross-Site Scripting (XSS) via unsanitized msu-continue system message

0.00084EPSS

Exploits0References2

Vulnrichment•added 2025/07/08 5:22 p.m.•2 views

CVE-2025-7362 MsUpload: Stored Cross-Site Scripting (XSS) via unsanitized msu-continue system message

5.8AI score0.00084EPSS

Exploits0References2

CVE•added 2025/07/08 5:22 p.m.•12 views

CVE-2025-7362

Summary : CVE-2025-7362 affects the MediaWiki MsUpload extension. Affected versions are 1.39.X (before 1.39.13), 1.42.X (before 1.42.7), and 1.43.X (before 1.43.2). The issue is a stored XSS in the msu-continue system message that is inserted into the DOM without proper sanitization, occurring in...

5.4CVSS5.5AI score0.00084EPSS

Exploits0References2

CNNVD•added 2025/07/08 12:0 a.m.•1 views

Wikimedia Mediawiki - MsUpload extension 安全漏洞

Wikimedia Mediawiki - MsUpload extension is a bulk file upload plugin from the Wikimedia Foundation. A security vulnerability exists in Wikimedia Mediawiki - MsUpload extension versions prior to 1.39.13, prior to 1.42.7, and prior to 1.43.2, which stems from stored cross-site scripting due to...

5.4CVSS6.1AI score0.00084EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by