Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mediawiki

mediawiki

431 tracked vulnerabilities.

CVE-2022-39193 MEDIUM

MediaWiki CheckUser Extension - Unauthorized Exposure of Sensitive Edit and Action Performer Information

CVE-2022-47927 MEDIUM

MediaWiki Credential Exposure via SQLite File Permissions

CVE-2022-41767 MEDIUM

MediaWiki <1.35.8, 1.36.x, 1.37.x <1.37.5, 1.38.x <1.38.3 - Info Di...

CVE-2022-41765 MEDIUM

MediaWiki <1.35.8-1.38.3 - Info Disclosure

CVE-2022-4561 LOW

SemanticDrilldown < 2022-08-12 - Cross-Site Scripting via GET Parameter Handler

CVE-2022-28204 HIGH

MediaWiki 1.37.0-1.37.1 - Denial of Service via Special:WhatLinksHere Endpoint

CVE-2022-28203 HIGH

MediaWiki < 1.35.6, 1.36.x < 1.36.4, 1.37.x < 1.37.2 - Denial of Service via Special:NewFiles Query

CVE-2022-28201 MEDIUM

MediaWiki <1.35.6-1.37.2 - Info Disclosure

CVE-2022-39194 MEDIUM

MediaWiki < 1.38.2 - Denial of Service via GrowthExperiments Community Configuration

CVE-2022-34912 MEDIUM

MediaWiki < 1.37.3 and 1.38.x < 1.38.1 - Cross-Site Scripting in Special:Contributions Page Title

CVE-2022-34911 MEDIUM

MediaWiki < 1.35.7, 1.36.x-1.37.x < 1.37.3, 1.38.x < 1.38.1 - Cross-Site Scripting via Username in Account Creation

CVE-2022-34750 HIGH

MediaWiki < 1.38.1 - Denial of Service via Unvalidated Lemma Length in Wikibase Lexeme

CVE-2022-29969 MEDIUM

RSS for MediaWiki < 2022-04-29 - Cross-Site Scripting via RSS Element

CVE-2022-28323 HIGH

MediaWiki <1.37.2 - Info Disclosure

CVE-2022-29907 MEDIUM

MediaWiki < 1.37.2 - Cross-Site Scripting in Nimbus Skin Advertise Link Messages

CVE-2022-29906 CRITICAL

MediaWiki QuizGame Extension < 1.37.2 - Missing Authorization in Admin API Module

CVE-2022-29905 MEDIUM

MediaWiki FanBoxes < 1.37.2 - Cross-Site Request Forgery via Special:UserBoxes

CVE-2022-29904 CRITICAL

MediaWiki SemanticDrilldown < 1.37.2 - SQL Injection via Constraint Handling

CVE-2022-29903 MEDIUM

MediaWiki Private Domains Extension < 1.37.2 - Cross-Site Request Forgery via Special:PrivateDomains

CVE-2022-29547 HIGH

CreateRedirect < 2022-04-14 - Unauthenticated Page Edit via Permission Bypass

CVE-2022-28209 CRITICAL

Mediawiki <1.37.1 - Info Disclosure

CVE-2022-28206 CRITICAL

MediaWiki <1.37.1 - Info Disclosure

CVE-2022-28205 CRITICAL

MediaWiki <1.37.1 - Info Disclosure

CVE-2022-28202 MEDIUM

MediaWiki < 1.35.6, 1.36.x < 1.36.4, 1.37.x < 1.37.2 - Cross-Site Scripting via Gallery and Special:RevisionDelete

CVE-2022-21710 MEDIUM

ShortDescription < 2.3.4 - Cross-Site Scripting via SHORTDESC Wikitext

Previous Page 5 of 18 Next

Products

mediawiki 395 core 29 cargo 9 checkuser 8 abusefilter 3 visual_editor 3 mobilefrontend 2 abuse-filter 1 createredirect 1 data-transfer 1 matomo 1 mediawik 1 mediawiki_botquery_ext 1 rss_for_mediawiki 1 rssreader 1 score 1 scribunto 1 semantic-media-wiki 1 semantic_drilldown 1 shortdescription 1 skin\ 1 wikisource_category_browser 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy