mediawiki/core
Packagist28 known CVEs affecting this package
Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.
CVEs affecting mediawiki/corepage 1 of 1
- CVE-2014-2853NONECVSS 0.0EG 0.0✓ Fixed in 1.22.62014-04-29
Cross-site scripting (XSS) vulnerability in includes/actions/InfoAction.php in MediaWiki before 1.21.9 and 1.22.x before 1.22.6 allows remote attackers to inject arbitrary web script or HTML via the sort key in an info action.
- CVE-2018-0503MEDIUMCVSS 4.3EG 4.3✓ Fixed in 1.31.12018-10-04
vulnerable: 1.31.0
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where contrary to the documentation, $wgRateLimits entry for 'user' overrides that for 'newbie'.
- CVE-2018-0504MEDIUMCVSS 6.5EG 6.5✓ Fixed in 1.31.12018-10-04
vulnerable: 1.31.0
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains an information disclosure flaw in the Special:Redirect/logid
- CVE-2018-0505MEDIUMCVSS 6.5EG 6.5✓ Fixed in 1.31.12018-10-04
vulnerable: 1.31.0
Mediawiki 1.31 before 1.31.1, 1.30.1, 1.29.3 and 1.27.5 contains a flaw where BotPasswords can bypass CentralAuth's account lock
- CVE-2018-13258MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.31.12018-10-04
vulnerable: 1.31.0
Mediawiki 1.31 before 1.31.1 misses .htaccess files in the provided tarball used to protect some directories that shouldn't be web accessible.
- CVE-2019-12466HIGHCVSS 8.8EG 8.8✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
Wikimedia MediaWiki through 1.32.1 allows CSRF.
- CVE-2019-12467MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
MediaWiki through 1.32.1 has Incorrect Access Control (issue 1 of 3). A spammer can use Special:ChangeEmail to send out spam with no rate limiting or ability to block them. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12468CRITICALCVSS 9.8EG 9.8✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
An Incorrect Access Control vulnerability was found in Wikimedia MediaWiki 1.27.0 through 1.32.1. Directly POSTing to Special:ChangeEmail would allow for bypassing re-authentication, allowing for potential account takeover.
- CVE-2019-12469MEDIUMCVSS 6.5EG 6.5✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed username or log in Special:EditTags are exposed. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12470MEDIUMCVSS 6.5EG 6.5✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
Wikimedia MediaWiki through 1.32.1 has Incorrect Access Control. Suppressed log in RevisionDelete page is exposed. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12471MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.31.22019-07-10
vulnerable: 1.31.0, 1.31.1
Wikimedia MediaWiki 1.30.0 through 1.32.1 has XSS. Loading user JavaScript from a non-existent account allows anyone to create the account, and perform XSS on users loading that script. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12472HIGHCVSS 7.5EG 7.5✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
An Incorrect Access Control vulnerability was found in Wikimedia MediaWiki 1.18.0 through 1.32.1. It is possible to bypass the limits on IP range blocks ($wgBlockCIDRLimit) by using the API. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12473HIGHCVSS 7.5EG 7.5✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
Wikimedia MediaWiki 1.27.0 through 1.32.1 might allow DoS. Passing invalid titles to the API could cause a DoS by querying the entire watchlist table. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-12474HIGHCVSS 7.5EG 7.5✓ Fixed in 1.32.22019-07-10
vulnerable: 1.32.0, 1.32.1
Wikimedia MediaWiki 1.23.0 through 1.32.1 has an information leak. Privileged API responses that include whether a recent change has been patrolled may be cached publicly. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
- CVE-2019-16738MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.33.12019-09-26
vulnerable: 1.33.0
In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.
- CVE-2019-19709MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.34.02019-12-11
vulnerable: 1.34.0-rc.0, 1.34.0-rc.1
MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when e…
- CVE-2020-10959MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.34.0-rc.02020-06-02
vulnerable: 1.20.3 ... 1.33.4 (105 versions)
resources/src/mediawiki.page.ready/ready.js in MediaWiki before 1.35 allows remote attackers to force a logout and external redirection via HTML content in a MediaWiki page.
- CVE-2020-10960MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.34.12020-04-03
vulnerable: 1.34.0
In MediaWiki before 1.34.1, users can add various Cascading Style Sheets (CSS) classes (which can affect what content is shown or hidden in the user interface) to arbitrary DOM nodes via HTML content within a MediaWiki page. This occurs be…
- CVE-2020-15005LOWCVSS 3.1EG 3.1✓ Fixed in 1.34.22020-06-24
vulnerable: 1.34.0, 1.34.1
In MediaWiki before 1.31.8, 1.32.x and 1.33.x before 1.33.4, and 1.34.x before 1.34.2, private wikis behind a caching server using the img_auth.php image authorization security feature may have had their files cached publicly, so any unaut…
- CVE-2020-25812MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.35.02020-09-27
vulnerable: 1.35.0-rc.0, 1.35.0-rc.1, 1.35.0-rc.2, 1.35.0-rc.3
An issue was discovered in MediaWiki 1.34.x before 1.34.4. On Special:Contributions, the NS filter uses unescaped messages as keys in the option key for an HTMLForm specifier. This is vulnerable to a mild XSS if one of those messages is ch…
- CVE-2020-25813MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.34.32020-09-27
vulnerable: 1.32.0 ... 1.34.2 (18 versions)
In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, Special:UserRights exposes the existence of hidden users.
- CVE-2020-25814MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.35.02020-09-27
vulnerable: 1.35.0-rc.0, 1.35.0-rc.1, 1.35.0-rc.2, 1.35.0-rc.3
In MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4, XSS related to jQuery can occur. The attacker creates a message with [javascript:payload xss] and turns it into a jQuery object with mw.message().parse(). The expected re…
- CVE-2020-25815MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.35.02020-09-27
vulnerable: 1.35.0-rc.0, 1.35.0-rc.1, 1.35.0-rc.2, 1.35.0-rc.3
An issue was discovered in MediaWiki 1.32.x through 1.34.x before 1.34.4. LogEventList::getFiltersDesc is insecurely using message text to build options names for an HTML multi-select field. The relevant code should use escaped() instead o…
- CVE-2020-25827HIGHCVSS 7.5EG 7.5✓ Fixed in 1.34.32020-09-27
vulnerable: 1.32.0 ... 1.34.2 (18 versions)
An issue was discovered in the OATHAuth extension in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. For Wikis using OATHAuth on a farm/cluster (such as via CentralAuth), rate limiting of OATH tokens is only done on a sin…
- CVE-2020-25828MEDIUMCVSS 6.1EG 6.1✓ Fixed in 1.35.02020-09-27
vulnerable: 1.35.0-rc.0, 1.35.0-rc.1, 1.35.0-rc.2, 1.35.0-rc.3
An issue was discovered in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. The non-jqueryMsg version of mw.message().parse() doesn't escape HTML. This affects both message contents (which are generally safe) and the param…
- CVE-2021-41800MEDIUMCVSS 5.3EG 5.3✓ Fixed in 1.36.22021-10-11
vulnerable: 1.20.3 ... 1.36.1 (134 versions)
MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). Visiting Special:Contributions can sometimes result in a long running SQL query because PoolCounter protection is mishandle…
- CVE-2023-29141CRITICALCVSS 9.8EG 9.8✓ Fixed in 1.35.102023-03-31
vulnerable: 1.20.3 ... 1.35.9 (126 versions)
An issue was discovered in MediaWiki before 1.35.10, 1.36.x through 1.38.x before 1.38.6, and 1.39.x before 1.39.3. An auto-block can occur for an untrusted X-Forwarded-For header.
- CVE-2023-45363HIGHCVSS 7.5EG 7.5✓ Fixed in 1.40.12023-10-09
vulnerable: 1.40.0
An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when queryi…
Check whether mediawiki/core is used in your infrastructure
EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for mediawiki/core CVEs against the assets you own.
Start Free Scan →