3 matches found
CVE-2025-11175
Improper Neutralization of Special Elements used in an Expression Language Statement 'Expression Language Injection' vulnerability in The Wikimedia Foundation Mediawiki - DiscussionTools Extension allows Regular Expression Exponential Blowup.This issue affects Mediawiki - DiscussionTools Extensio...
UBUNTU-CVE-2025-62658
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...
Wikimedia Mediawiki CampaignEvents Extension 安全漏洞
Wikimedia Mediawiki CampaignEvents Extension is a Wikimedia Foundation extension for wiki projects. A security vulnerability exists in Wikimedia Mediawiki CampaignEvents Extension 1.43.2 prior to version 1.43.x. The vulnerability stems from improper input neutralization and could lead to cross-si...