| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-11937 | Stored XSS through a system message in SecurePoll | The Wikimedia Foundation | Mediawiki - SecurePoll Extension | - | - | 2025-10-18 05:14:56 | Deep Dive |
| CVE-2025-62666 | DoS vector through the cirrusbuilddoc query API | The Wikimedia Foundation | Mediawiki - CirrusSearch Extension | - | - | 2025-10-18 04:47:52 | Deep Dive |
| CVE-2025-62667 | Stored XSS through article extracts in GrowthExperiments | The Wikimedia Foundation | Mediawiki - GrowthExperiments Extension | - | - | 2025-10-18 04:42:31 | Deep Dive |
| CVE-2025-62668 | Insufficient permission checks in action=growthsetmentor | The Wikimedia Foundation | Mediawiki - GrowthExperiments Extension | - | - | 2025-10-18 04:39:28 | Deep Dive |
| CVE-2025-62669 | UserInfoCard: activeLocalBlocksAllWikis does not do permissions checks | The Wikimedia Foundation | Mediawiki - CentralAuth Extension | - | - | 2025-10-18 04:34:35 | Deep Dive |
| CVE-2025-62670 | Stored XSS through a system message in FlexDiagrams | The Wikimedia Foundation | Mediawiki - FlexDiagrams Extension | - | - | 2025-10-18 04:29:48 | Deep Dive |
| CVE-2025-62671 | Stored XSS through wikitext in Cargo | The Wikimedia Foundation | Mediawiki - Cargo Extension | - | - | 2025-10-18 04:24:36 | Deep Dive |
| CVE-2025-62662 | Stored XSS through system messages in AdvancedSearch | The Wikimedia Foundation | Mediawiki - AdvancedSearch Extension | - | - | 2025-10-18 04:19:31 | Deep Dive |
| CVE-2025-62663 | Stored XSS through a system message in UploadWizard | The Wikimedia Foundation | Mediawiki - UploadWizard Extension | - | - | 2025-10-18 04:16:01 | Deep Dive |
| CVE-2025-62664 | Stored XSS through a system message in ImageRating | The Wikimedia Foundation | Mediawiki - ImageRating Extension | - | - | 2025-10-18 04:13:27 | Deep Dive |
| CVE-2025-62665 | Stored XSS through system messages in Skin:BlueSky | Wikimedia Foundation | Mediawiki - Skin:BlueSky | - | - | 2025-10-18 04:10:27 | Deep Dive |
| CVE-2025-62655 | SQL injection in Cargo via Special:CargoExport | The Wikimedia Foundation | MediaWiki Cargo extension | - | - | 2025-10-17 22:46:29 | Deep Dive |
| CVE-2025-62654 | Stored XSS through system messages in QuizGame | The Wikimedia Foundation | MediaWiki QuizGame extension | - | - | 2025-10-17 22:38:54 | Deep Dive |
| CVE-2025-62653 | Stored XSS through system messages in PollNY | The Wikimedia Foundation | MediaWiki PollNY extension | - | - | 2025-10-17 22:23:05 | Deep Dive |
| CVE-2025-62652 | Stored XSS in WebAuthn key name | The Wikimedia Foundation | MediaWiki WebAuthn extension | - | - | 2025-10-17 22:15:27 | Deep Dive |
| CVE-2025-55085 | Web http client: Unchecked Server-Side Malicious Packet Issue | Eclipse Foundation | NetX Duo | - | - | 2025-10-17 14:22:29 | Deep Dive |
| CVE-2025-55087 | Eclipse ThreadX NetX Duo 安全漏洞 | Eclipse Foundation | NextX Duo | - | - | 2025-10-17 06:03:14 | Deep Dive |
| CVE-2025-55100 | Potential out-of-bounds read in _ux_host_class_audio10_sam_parse_func() | Eclipse Foundation | USBX | - | - | 2025-10-17 05:40:10 | Deep Dive |
| CVE-2025-55099 | Potential out-of-bounds read in _ux_host_class_audio_alternate_setting_locate() | Eclipse Foundation | USBX | - | - | 2025-10-17 05:38:31 | Deep Dive |
| CVE-2025-55098 | Potential out-of-bounds read in _ux_host_class_audio_device_type_get() | Eclipse Foundation | USBX | - | - | 2025-10-17 05:37:00 | Deep Dive |