Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mediawiki

mediawiki

431 tracked vulnerabilities.

CVE-2019-18611 MEDIUM

MediaWiki CheckUser <1.34 - Info Disclosure

CVE-2019-16738 MEDIUM

MediaWiki <1.33.0 - Info Disclosure

CVE-2019-14807 MEDIUM

MobileFrontend 1.31.0-1.33.0 - Cross-Site Scripting in Edit Summary Field

CVE-2019-12470 MEDIUM

MediaWiki <= 1.32.1 - Incorrect Access Control in RevisionDelete Page

CVE-2019-12469 MEDIUM

MediaWiki < 1.27.6 - Incorrect Access Control

CVE-2019-12474 HIGH

MediaWiki 1.23.0-1.32.1 - Information Disclosure via Cached API Response

CVE-2019-12473 HIGH

MediaWiki 1.27.0-1.32.1 - Denial of Service via Invalid Title API Query

CVE-2019-12472 HIGH

MediaWiki 1.18.0-1.32.1 - Incorrect Access Control via API

CVE-2019-12471 MEDIUM

MediaWiki 1.27.0-1.27.5 1.30.0-1.30.1 - Cross-Site Scripting via Non-Existent User JavaScript

CVE-2019-12466 HIGH

MediaWiki < 1.32.1 - Cross-Site Request Forgery

CVE-2019-12468 CRITICAL

MediaWiki 1.27.0-1.32.1 - Incorrect Access Control via Special:ChangeEmail

CVE-2019-12467 MEDIUM

MediaWiki <1.32.1 - Info Disclosure

CVE-2018-13258 MEDIUM

MediaWiki 1.31.0 - Unauthenticated Exposure of Sensitive Information via Missing .htaccess Files

CVE-2018-0505 MEDIUM

MediaWiki 1.27.0-1.27.4 and 1.31.0 - Improper Authentication via BotPasswords CentralAuth Bypass

CVE-2018-0504 MEDIUM

MediaWiki 1.27.0-1.27.4 and 1.31.0 - Information Disclosure in Special:Redirect/logid

CVE-2018-0503 MEDIUM

MediaWiki 1.27.0-1.27.4, 1.31.0 - Improper Privilege Management via Rate Limit Override

CVE-2017-20175 LOW

DaSchTour matomo-mediawiki-extension <2.4.2 - XSS

CVE-2017-0371 HIGH

MediaWiki <1.23.16, 1.24.x-1.27.x<1.27.2, 1.28.x<1.28.1 - Info Disc...

CVE-2017-0372 CRITICAL

MediaWiki < 1.23.16, 1.27.3, 1.28.2 - Parameter Injection in SyntaxHighlight Extension

CVE-2017-0370 MEDIUM

MediaWiki < 1.23.16 - Spam Blacklist Bypass via Encoded URLs in File Inclusion Syntax

CVE-2017-0369 MEDIUM

MediaWiki < 1.23.16 - Authenticated Page Undeletion via Protection Bypass

CVE-2017-0368 MEDIUM

MediaWiki < 1.23.16 - Improper Input Validation in RawHTML Mode

CVE-2017-0367 HIGH

MediaWiki < 1.27.2 - Unsafe Temporary Directory Usage in LocalisationCache

CVE-2017-0366 MEDIUM

MediaWiki < 1.23.16 - SVG Filter Bypass via Default Attribute Values in DTD Declaration

CVE-2017-0365 MEDIUM

MediaWiki < 1.23.16, 1.27.0-1.27.2, < 1.28.1 - Cross-Site Scripting in SearchHighlighter

Previous Page 10 of 18 Next

Products

mediawiki 395 core 29 cargo 9 checkuser 8 abusefilter 3 visual_editor 3 mobilefrontend 2 abuse-filter 1 createredirect 1 data-transfer 1 matomo 1 mediawik 1 mediawiki_botquery_ext 1 rss_for_mediawiki 1 rssreader 1 score 1 scribunto 1 semantic-media-wiki 1 semantic_drilldown 1 shortdescription 1 skin\ 1 wikisource_category_browser 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy