EUVD-2025-34836

Envoy is an open source edge and service proxy. Envoy versions earlier than 1.36.2, 1.35.6, 1.34.10, and 1.33.12 contain a use-after-free vulnerability in the Lua filter. When a Lua script executing in the response phase rewrites a response body so that its size exceeds the configured...

PT-2021-23488 · Mediawiki +1 · Translate Extension +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.36.2 Description: An issue in the Translate extension allows oversighters to whitewash revisions by preventing them from undoing revisions or oversight on pages where they suppressed information, such as personall...

MediaWiki 跨站脚本漏洞

MediaWiki is a free and free-to-use web-based wiki engine from the US-based MediaWiki Foundation. A cross-site scripting vulnerability exists in versions of MediaWiki prior to 1.36.2, which stems from the fact that MediaWiki messages associated with a month are not escaped until they are used on ...