Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mediawiki

mediawiki

431 tracked vulnerabilities.

CVE-2021-31545 MEDIUM

MediaWiki < 1.35.2 - Exposure of Deleted Usernames via AbuseFilter page_recent_contributors

CVE-2021-30159 MEDIUM

MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Unintended Page Deletion via Fast Double Move

CVE-2021-30156 MEDIUM

MediaWiki <1.35.2 - Info Disclosure

CVE-2021-30155 MEDIUM

MediaWiki <1.35.2 - Privilege Escalation

CVE-2021-30152 MEDIUM

MediaWiki <1.31.13, 1.32-1.35.1 - Privilege Escalation

CVE-2021-30158 MEDIUM

MediaWiki <1.35.2 - Info Disclosure

CVE-2021-30157 MEDIUM

MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Stored Cross-Site Scripting in ChangesList Filter Labels

CVE-2021-30154 MEDIUM

MediaWiki < 1.31.12 and 1.32.x-1.35.x < 1.35.2 - Cross-Site Scripting via Special:NewFiles

CVE-2020-29007 CRITICAL

MediaWiki Score < 0.3.0 - Remote Code Execution via GNU LilyPond Sandbox Escape

CVE-2020-29005 HIGH

MediaWiki < 1.35 - Cleartext Transmission of Sensitive Information in Push Extension API

CVE-2020-29004 HIGH

MediaWiki < 1.35 - Cross-Site Request Forgery via Push Extension API

CVE-2020-35626 HIGH

MediaWiki < 1.35.1 - Cross-Site Request Forgery in PushToWatch Extension

CVE-2020-35625 HIGH

MediaWiki < 1.35.1 - Unauthenticated Arbitrary Static Function Execution via Widgets Extension HTML Comment

CVE-2020-35624 MEDIUM

MediaWiki < 1.35.1 - Information Disclosure via SecurePoll Vote Timestamp

CVE-2020-35623 HIGH

MediaWiki <1.35.1 - Privilege Escalation

CVE-2020-35622 MEDIUM

MediaWiki GlobalUsage Extension < 1.35.1 - Cross-Site Scripting via Unsafe WikiMap Link Generation

CVE-2020-35480 MEDIUM

MediaWiki < 1.35.1 - Information Disclosure of Hidden User Accounts

CVE-2020-35479 MEDIUM

MediaWiki 1.12.0-1.35.0 - Cross-Site Scripting via BlockLogFormatter.php

CVE-2020-35478 MEDIUM

MediaWiki 1.33.0-1.35.0 - Cross-Site Scripting via BlockLogFormatter.php

CVE-2020-35477 MEDIUM

MediaWiki <1.35.1 - Info Disclosure

CVE-2020-35475 HIGH

MediaWiki < 1.35.1 - Cross-Site Scripting in UserRights Special Page

CVE-2020-35474 MEDIUM

MediaWiki < 1.35.1 - Stored Cross-Site Scripting via MediaWiki:recentchanges-legend-watchlistexpiry

CVE-2020-29003 MEDIUM

MediaWiki PollNY extension < 1.35 - Stored Cross-Site Scripting via Poll Answer Option

CVE-2020-29002 MEDIUM

MediaWiki < 1.35 - Cross-Site Scripting via CologneBlue Skin qbfind Message

CVE-2020-27957 MEDIUM

MediaWiki < 1.35 - Stored Cross-Site Scripting in RandomGameUnit Extension

Previous Page 8 of 18 Next

Products

mediawiki 395 core 29 cargo 9 checkuser 8 abusefilter 3 visual_editor 3 mobilefrontend 2 abuse-filter 1 createredirect 1 data-transfer 1 matomo 1 mediawik 1 mediawiki_botquery_ext 1 rss_for_mediawiki 1 rssreader 1 score 1 scribunto 1 semantic-media-wiki 1 semantic_drilldown 1 shortdescription 1 skin\ 1 wikisource_category_browser 1

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy