Latest mediawiki mediawiki Vulnerabilities

An issue was discovered in the WatchAnalytics extension in MediaWiki before 1.40.2. XSS can occur via the Special:PageStatistics page parameter.
Mediawiki Mediawiki<1.40.2
An issue was discovered in the Cargo extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:Drilldown page allows XSS via artist, album, and ...
Mediawiki Mediawiki<1.35.14
Mediawiki Mediawiki>=1.36.0<1.39.6
Mediawiki Mediawiki>=1.40.0<1.40.2
An issue was discovered in the Phonos extension in MediaWiki before 1.40.2. PhonosButton.js allows i18n-based XSS via the phonos-purge-needed-error message.
Mediawiki Mediawiki<1.40.2
An issue was discovered in the CampaignEvents extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. The Special:EventDetails page allows XSS via the x-x...
Mediawiki Mediawiki<1.35.14
Mediawiki Mediawiki>=1.36.0<1.39.6
Mediawiki Mediawiki>=1.40.0<1.40.2
An issue was discovered in the CheckUser extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. XSS can occur via message definitions. e.g., in SpecialCh...
Mediawiki Mediawiki<1.35.14
Mediawiki Mediawiki>=1.36.0<1.39.6
Mediawiki Mediawiki>=1.40.0<1.40.2
An issue was discovered in the PageTriage extension in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. XSS can occur via the rev-deleted-user, pagetriage-tags-...
Mediawiki Mediawiki<1.35.14
Mediawiki Mediawiki>=1.36.0<1.39.6
Mediawiki Mediawiki>=1.40.0<1.40.2
An issue was discovered in the GlobalBlocking extension in MediaWiki before 1.40.2. For a Special:GlobalBlock?uselang=x-xss URI, i18n-based XSS can occur via the parentheses message. This affects subt...
Mediawiki Mediawiki<1.40.2
An issue was discovered in MediaWiki before 1.35.14, 1.36.x through 1.39.x before 1.39.6, and 1.40.x before 1.40.2. In includes/logging/RightsLogFormatter.php, group-*-member messages can result in XS...
Mediawiki Mediawiki<1.35.14
Mediawiki Mediawiki>=1.36.0<1.39.6
Mediawiki Mediawiki>=1.40.0<1.40.2
An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. diff-multi-sameuser (aka "X intermediate revisions by the sa...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
Mediawiki Mediawiki=1.40.0-rc0
debian/mediawiki<=1:1.31.16-1+deb10u2<=1:1.35.11-1~deb11u1
An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. Th...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.39.0<1.39.5
Mediawiki Mediawiki=1.40.0
Mediawiki Mediawiki=1.40.0-rc0
debian/mediawiki<=1:1.31.16-1+deb10u2<=1:1.31.16-1+deb10u7<=1:1.35.11-1~deb11u1
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. During item merging, ItemMergeInteractor does not have an...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. SportsTeams: Special:SportsManagerLogo and Special:Spo...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is no rate limit for merging items.
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the SportsTeams extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It does not check for the anti-CSRF edit token in Spec...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the ProofreadPage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. XSS can occur via formatNumNoSeparators.
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the PageTriage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. Usernames of hidden users are exposed.
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in the CheckUser extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. A user can use a rest.php/checkuser/v0/useragent-clienth...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
An issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through 1.39.x before 1.39.5 and 1.40.x before 1.40.1. Deleted revision existence is leaked due to incorrect permissions being ...
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
Debian Debian Linux=11.0
Debian Debian Linux=12.0
debian/mediawiki
An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop a...
Mediawiki Mediawiki<1.35.12
Mediawiki Mediawiki>=1.36.0<1.39.5
Mediawiki Mediawiki=1.40.0
Debian Debian Linux=11.0
Debian Debian Linux=12.0
debian/mediawiki<=1:1.31.16-1+deb10u2<=1:1.35.11-1~deb11u1
Stored XSS leads to privilege escalation in MediaWiki v1.40.0
Mediawiki Mediawiki=1.40.0
debian/mediawiki<=1:1.31.16-1+deb10u2<=1:1.35.11-1~deb11u1
Debian Debian Linux=10.0
Debian Debian Linux=11.0
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, 1.39.x before 1.39.4, and 1.40.x before 1.40.1. It is possible to bypass the Bad image list (aka badFile) by u...
Mediawiki Mediawiki<1.35.11
Mediawiki Mediawiki>=1.36.0<1.38.7
Mediawiki Mediawiki>=1.39.0<1.39.4
Mediawiki Mediawiki=1.40.0
debian/mediawiki
An issue was discovered in the CheckUserLog API in the CheckUser extension for MediaWiki through 1.39.3. There is incorrect access control for visibility of hidden users.
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In certain situations, an attempt to block a user fails after a temporary browser hang and a DBQueryDisconnectedError e...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in SubmitEntityAction in Wikibase in MediaWiki through 1.39.3. Because it doesn't use EditEntity for undo and restore, the intended interaction with AbuseFilter does not occur.
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the ProofreadPage (aka Proofread Page) extension for MediaWiki through 1.39.3. In includes/Page/PageContentHandler.php and includes/Page/PageDisplayHandler.php, hidden users...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the DoubleWiki extension for MediaWiki through 1.39.3. includes/DoubleWiki.php allows XSS via the column alignment feature.
Mediawiki Mediawiki<=1.39.3
An issue was discovered in SiteLinksView.php in Wikibase in MediaWiki through 1.39.3. There is XSS via a crafted badge title attribute. This is also related to lack of escaping in wbTemplate (from res...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the Cargo extension for MediaWiki through 1.39.3. It allows one to store javascript: URLs in URL fields, and automatically links these URLs.
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the Cargo extension for MediaWiki through 1.39.3. XSS can occur in Special:CargoQuery via a crafted page item when using the default format.
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the GoogleAnalyticsMetrics extension for MediaWiki through 1.39.3. The googleanalyticstrackurl parser function does not properly escape JavaScript in the onclick handler and...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in MediaWiki before 1.35.11, 1.36.x through 1.38.x before 1.38.7, and 1.39.x before 1.39.4. BlockLogFormatter.php in BlockLogFormatter allows XSS in the partial blocks feature.
Mediawiki Mediawiki<1.35.11
Mediawiki Mediawiki>=1.36.0<1.38.7
Mediawiki Mediawiki>=1.39.0<1.39.4
debian/mediawiki
An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name (when t...
Mediawiki Mediawiki<1.35.8
Mediawiki Mediawiki>=1.36.0<1.37.5
Mediawiki Mediawiki>=1.38.0<1.38.3
An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x through 1.35.x before 1.35.2. . When using VisualEditor to edit a MediaWiki user page belonging to an exis...
Mediawiki Mediawiki<1.31.13
Mediawiki Mediawiki>=1.32.0<1.35.2
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. When a user with checkuserlog permissions makes many CheckUserLog API requests in some configurations, denial of servic...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in MediaWiki before 1.35.10, 1.36.x through 1.38.x before 1.38.6, and 1.39.x before 1.39.3. An auto-block can occur for an untrusted X-Forwarded-For header.
Mediawiki Mediawiki<1.35.10
Mediawiki Mediawiki>=1.36.0<1.38.6
Mediawiki Mediawiki>=1.39.0<1.39.3
Fedoraproject Fedora=37
debian/mediawiki<=1:1.31.16-1+deb10u2
An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. Attackers might be able to see edits for which the username has been hidden, because there is no check for rev_...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the GrowthExperiments extension for MediaWiki through 1.39.3. The UserImpactHandler for GrowthExperiments inadvertently returns the timezone preference for arbitrary users, ...
Mediawiki Mediawiki<=1.39.3
An issue was discovered in the CheckUser extension for MediaWiki through 1.39.x. Various components of this extension can expose information on the performer of edits and logged actions. This informat...
Mediawiki Mediawiki=1.39.0
Mediawiki Mediawiki=1.39.0-rc0
Mediawiki Mediawiki=1.39.0-rc1
Mediawiki Mediawiki=1.39.1
An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. There is XSS in Wikibase date formatting via wikibase-time-precision-* fields. This a...
Mediawiki Mediawiki<1.35.9
Mediawiki Mediawiki>=1.36.0<1.38.5
Mediawiki Mediawiki=1.39.0
Mediawiki Mediawiki=1.39.0-rc0
Mediawiki Mediawiki=1.39.0-rc1
An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. When installing with a pre-existing data directory that has weak permissions, the SQL...
Mediawiki Mediawiki<1.35.9
Mediawiki Mediawiki>=1.36.0<1.38.5
Mediawiki Mediawiki=1.39.0
Mediawiki Mediawiki=1.39.0-rc0
Mediawiki Mediawiki=1.39.0-rc1
Fedoraproject Fedora=37
In the GrowthExperiments extension for MediaWiki through 1.39, the growthmanagementorlist API allows blocked users (blocked in ApiManageMentorList) to enroll as mentors or edit any of their mentorship...
Mediawiki Mediawiki<=1.39.0
Fedoraproject Fedora=37
An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. E-Widgets does widget replacement in HTML attributes, which can lead to XSS, because ...
Mediawiki Mediawiki<1.35.9
Mediawiki Mediawiki>=1.36.0<1.38.5
Mediawiki Mediawiki=1.39.0
Mediawiki Mediawiki=1.39.0-rc0
Mediawiki Mediawiki=1.39.0-rc1
Fedoraproject Fedora=37
An issue was discovered in MediaWiki before 1.35.9, 1.36.x through 1.38.x before 1.38.5, and 1.39.x before 1.39.1. SpecialMobileHistory allows remote attackers to cause a denial of service because dat...
Mediawiki Mediawiki<1.35.9
Mediawiki Mediawiki>=1.36.0<1.38.5
Mediawiki Mediawiki=1.39.0
Mediawiki Mediawiki=1.39.0-rc0
Mediawiki Mediawiki=1.39.0-rc1
Fedoraproject Fedora=37
An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. HTMLUserTextField exposes the existence of hidden users.
debian/mediawiki<=1:1.31.16-1+deb10u2
Mediawiki Mediawiki<1.35.8
Mediawiki Mediawiki>=1.36.0<1.37.5
Mediawiki Mediawiki>=1.38.0<1.38.3
An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. When changes made by an IP address are reassigned to a user (using reassignEdits.php), th...
Mediawiki Mediawiki<1.35.8
Mediawiki Mediawiki>=1.36.0<1.37.5
Mediawiki Mediawiki>=1.38.0<1.38.3
debian/mediawiki<=1:1.31.16-1+deb10u2
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A title blocked by AbuseFilter can be created via Special:ChangeContentModel due to the mishandling ...
debian/mediawiki<=1:1.31.16-1+deb10u2
Mediawiki Mediawiki<1.35.5
Mediawiki Mediawiki>=1.36.0<1.36.3
Mediawiki Mediawiki=1.37.0
Mediawiki Mediawiki=1.37.0-rc0
Mediawiki Mediawiki=1.37.0-rc1
and 1 more
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. There is Blind Stored XSS via a URL to the Upload Image feature.
debian/mediawiki
Mediawiki Mediawiki<1.35.5
Mediawiki Mediawiki>=1.36.0<1.36.3
Mediawiki Mediawiki=1.37.0
Mediawiki Mediawiki=1.37.0-rc0
Mediawiki Mediawiki=1.37.0-rc1
and 1 more
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The REST API publicly caches results from private wikis.
debian/mediawiki
Mediawiki Mediawiki<1.35.5
Mediawiki Mediawiki>=1.36.0<1.36.3
Mediawiki Mediawiki=1.37.0
Mediawiki Mediawiki=1.37.0-rc0
Mediawiki Mediawiki=1.37.0-rc1
and 1 more
An issue was discovered in the Translate extension in MediaWiki through 1.36.2. Oversighters cannot undo revisions or oversight on pages where they suppressed information (such as PII). This allows ov...
Mediawiki Mediawiki<=1.36.2
An issue was discovered in the Growth extension in MediaWiki through 1.36.2. Any admin can add arbitrary JavaScript code to the Newcomer home page footer, which can be executed by viewers with zero ed...
Mediawiki Mediawiki<=1.36.2

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203