Filter
AND
Mediawiki CargoBackticks can allow the usage of not-allowed SQL functions
9.8
First published (updated )
Debian Debian LinuxStored XSS leads to privilege escalation in MediaWiki v1.40.0
First published (updated )
Wikimedia MediaWikiAn issue was discovered in the CheckUser extension for MediaWiki through 1.39.3. In certain situatio…
9.8
First published (updated )
composer/mediawiki/coreAn issue was discovered in MediaWiki before 1.35.10, 1.36.x through 1.38.x before 1.38.6, and 1.39.x…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Wikimedia MediaWikiThe admin API module in the QuizGame extension for MediaWiki through 1.37.2 (before 665e33a68f6fa116…
9.8
First published (updated )
Wikimedia MediaWikiAn issue was discovered in MediaWiki through 1.37.1. ImportPlanValidator.php in the FileImporter ext…
9.8
First published (updated )
Wikimedia MediaWikiAn issue was discovered in MediaWiki through 1.37.1. The CentralAuth extension mishandles a ttl issu…
9.8
First published (updated )
Wikimedia MediaWikiAn issue was discovered in Mediawiki through 1.37.1. The check for the override-antispoof permission…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraAn issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitCo…
9.8
First published (updated )
Wikimedia MediaWikiAn issue was discovered in the AbuseFilter extension in MediaWiki through 1.36. If the MediaWiki:Abu…
9.8
First published (updated )
Wikimedia MediaWikiAn issue was discovered in the CentralAuth extension in MediaWiki through 1.36. Autoblocks for Centr…
9.8
First published (updated )
Wikimedia MediaWikiIn the GlobalBlocking extension before 2020-03-10 for MediaWiki through 1.34.0, an issue related to …
9.8
First published (updated )
Wikimedia MediaWikiMediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in the local database, (1) which c…
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
composer/mediawiki/coreDirect POST to Special:ChangeEmail will bypass reauth check
9.8
First published (updated )
Wikimedia MediaWikiParameters injection in SyntaxHighlight results in multiple vulnerabilities
9.8
First published (updated )
Wikimedia MediaWikiapi.php in MediaWiki before 1.27.4, 1.28.x before 1.28.3, and 1.29.x before 1.29.2 has a Reflected F…
9.8
First published (updated )
Wikimedia MediaWikiThe MWOAuthDataStore::lookup_token function in Extension:OAuth for MediaWiki 1.25.x before 1.25.3, 1…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Wikimedia MediaWikiThe User::randomPassword function in MediaWiki before 1.23.12, 1.24.x before 1.24.5, 1.25.x before 1…
9.8
First published (updated )