49 matches found
EUVD-2025-19886
Malicious code in bioql PyPI...
CVE-2025-53501
Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constrained by Authorization.This issue affects Mediawiki - Scribunto Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from 1.43.X before...
CVE-2025-53501
Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constrained by Authorization.This issue affects Mediawiki - Scribunto Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from 1.43.X before...
CVE-2025-53501
Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constrained by Authorization.This issue affects Mediawiki - Scribunto Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from 1.43.X before...
CVE-2025-53501 Content Access Bypass in Scribunto
Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constrained by Authorization.This issue affects Mediawiki - Scribunto Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from 1.43.X before...
CVE-2025-53501 Content Access Bypass in Scribunto
Improper Access Control vulnerability in Wikimedia Foundation Mediawiki - Scribunto Extension allows : Accessing Functionality Not Properly Constrained by Authorization.This issue affects Mediawiki - Scribunto Extension: from 1.39.X before 1.39.12, from 1.42.X before 1.42.7, from 1.43.X before...
CVE-2025-53501
The CVE-2025-53501 issue affects the Mediawiki Scribunto Extension (Wikimedia Foundation). The root cause is improper access control that allows accessing functionality not properly constrained by authorization. Affected versions include Scribunto 1.39.x before 1.39.12, 1.42.x before 1.42.7, and ...
PT-2025-27809 · Mediawiki +1 · Mediawiki +1
Name of the Vulnerable Software and Affected Versions: Mediawiki - Scribunto Extension versions 1.39.0 through 1.39.11 Mediawiki - Scribunto Extension versions 1.42.0 through 1.42.6 Mediawiki - Scribunto Extension versions 1.43.0 through 1.43.1 Description: The issue is related to an Improper...
Wikimedia Mediawiki Scribunto Extension 安全漏洞
Wikimedia Mediawiki Scribunto Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability exists in Wikimedia Mediawiki Scribunto Extension that stems from improper access control and could lead to unauthorized feature access. The following versions are affected:...
SUSE CVE-2015-2939
Cross-site scripting XSS vulnerability in the Scribunto extension for MediaWiki allows remote attackers to inject arbitrary web script or HTML via a function name, which is not properly handled in a Lua error backtrace...
CVE-2014-9481
The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML...
Design/Logic Flaw
The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML...
CVE-2014-9481
CVE-2014-9481 concerns the Scribunto extension for MediaWiki. The provided documents specify that remote attackers can obtain the rollback token (and possibly other sensitive information) through a crafted Scribunto module, related to unstripping special page HTML. The current sources do not incl...
CVE-2014-9481
The Scribunto extension for MediaWiki allows remote attackers to obtain the rollback token and possibly other sensitive information via a crafted module, related to unstripping special page HTML...
The vulnerability of the S Pip content management system lies in the redirection of URLs to unreliable websites, allowing attackers to compromise data integrity.
The vulnerability of the Scribunto content management system is related to the redirection of URLs to an unreliable website. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity of the data...
The vulnerability of the S Pip content management system, related to incorrect authorization, allows a violator to compromise data integrity.
The vulnerability of the Scribunto content management system is related to improper authorization. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the data integrity...
The vulnerability of the S Pip content management system lies in the lack of measures taken to protect the website structure, allowing attackers to compromise the integrity of the data.
The vulnerability of the Scribunto content management system is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the data...
The vulnerability of the S Pip content management system, related to the disclosure of user information, allows a violator to gain unauthorized access to this information.
The vulnerability of the Scribunto content management system is related to the disclosure of user information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to information...
MediaWiki < 1.19.24 / 1.23.9 / 1.24.2 Multiple Vulnerabilities
Binary data 9471.prm...
MediaWiki Scribunto Extension Cross-Site Scripting Vulnerability
MediaWiki is a Wiki program. A cross-site scripting vulnerability exists in the MediaWiki Scribunto extension. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via function names...