CVE-2025-62658

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

EUVD-2025-35103

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

CVE-2025-62658

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

UBUNTU-CVE-2025-62658

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

CVE-2025-62658 SQL injection in WatchAnalytics through Special:ClearPendingReviews

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in The Wikimedia Foundation MediaWiki WatchAnalytics extension allows SQL Injection.This issue affects MediaWiki WatchAnalytics extension: 1.43, 1.44...

CVE-2025-62658

CVE-2025-62658 affects the MediaWiki WatchAnalytics extension (versions 1.43 and 1.44). The vulnerability is an SQL Injection caused by improper neutralization of user-controlled input in the extension, with network attack vector, high impact on confidentiality, integrity, and availability. The C...

MediaWiki - WatchAnalytics extension 安全漏洞

MediaWiki - WatchAnalytics extension is an open source user tracking and analytics extension for MediaWiki. A security vulnerability exists in MediaWiki - WatchAnalytics extension versions 1.43 and 1.44, which stems from improper neutralization of special elements and could lead to an SQL injecti...

EUVD-2024-20696

Malicious code in bioql PyPI...

CVE-2024-23177

An issue was discovered in the WatchAnalytics extension in MediaWiki before 1.40.2. XSS can occur via the Special:PageStatistics page parameter...

The vulnerability of the WatchAnalytics extension of the software platform, which enables the implementation of a hypertext environment like MediaWiki, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the WatchAnalytics extension for implementing the MediaWiki hypertext environment exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks using the...

MediaWiki cross-site scripting vulnerability (CNVD-2024-12712)

MediaWiki is an open source Wiki system based on PHP+MySQL environment. MediaWiki cross-site scripting attack vulnerability , the reason for this vulnerability is because the WatchAnalytics extension has a vulnerability , an attacker can use this vulnerability through the Special:PageStatistics...

CVE-2024-23177

An issue was discovered in the WatchAnalytics extension in MediaWiki before 1.40.2. XSS can occur via the Special:PageStatistics page parameter...

CVE-2024-23177

An issue was discovered in the WatchAnalytics extension in MediaWiki before 1.40.2. XSS can occur via the Special:PageStatistics page parameter...