Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 169 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-53482 IPInfo: Message key XSS through several IPInfo messages in infobox and popup Wikimedia FoundationMediawiki - IPInfo Extension 中危 -2025-07-04 16:01:46 Deep Dive
CVE-2025-53481 Denial of service vector on ipinfo/v0/norevision Wikimedia FoundationMediawiki - IPInfo Extension 中危 -2025-07-04 15:47:46 Deep Dive
CVE-2025-6926 Security Authentication Bypass in CentralAuth Wikimedia FoundationMediawiki - CentralAuth Extension--2025-07-03 16:23:57 Deep Dive
CVE-2025-53500 Stored XSS in MassEditRegex Wikimedia FoundationMediawiki - MassEditRegex Extension--2025-07-03 16:17:38 Deep Dive
CVE-2025-53501 Content Access Bypass in Scribunto Wikimedia FoundationMediawiki - Scribunto Extension--2025-07-03 16:15:53 Deep Dive
CVE-2025-53502 HTML injection in FeaturedFeeds Wikimedia FoundationMediawiki - FeaturedFeeds Extension--2025-07-03 16:11:07 Deep Dive
CVE-2025-53489 XSS in GoogleDocs4MW Wikimedia FoundationMediawiki - GoogleDocs4MW Extension--2025-07-03 16:06:46 Deep Dive
CVE-2025-53490 Multiple XSS in CampaignEvents Wikimedia FoundationMediawiki - CampaignEvents Extension--2025-07-03 16:04:05 Deep Dive
CVE-2025-53492 Stored XSS in MintyDocs Wikimedia FoundationMediawiki - MintyDocs Extension--2025-07-02 14:41:52 Deep Dive
CVE-2025-53493 Stored XSS in MintyDocs Wikimedia FoundationMediawiki - MintyDocs Extension--2025-07-02 14:38:07 Deep Dive
CVE-2025-53494 Stored XSS in TwoColConflict Wikimedia FoundationMediawiki - TwoColConflict Extension--2025-07-02 14:24:54 Deep Dive
CVE-2025-32077 XSSes in Extension:SimpleCalendar The Wikimedia FoundationMediawiki - Extension:SimpleCalendar--2025-04-11 16:25:07 Deep Dive
CVE-2025-32078 XSSes and potential RCE in Special:VersionCompare The Wikimedia FoundationMediawiki - Version Compare Extension--2025-04-11 16:24:46 Deep Dive
CVE-2025-32079 Saving the right content to MediaWiki:GrowthMentors.json can take down the site The Wikimedia FoundationMediawiki - GrowthExperiments--2025-04-11 16:24:22 Deep Dive
CVE-2025-32080 Cross-origin data leak in mobilefrontend via lazy load images The Wikimedia FoundationMediawiki - Mobile Frontend Extension--2025-04-11 16:24:00 Deep Dive
CVE-2025-32076 Evil regex used to process user-provided data in VisualData The Wikimedia FoundationMediawiki - Visual Data Extension--2025-04-11 16:23:36 Deep Dive
CVE-2025-32072 HTML injection in feed output from i18n message The Wikimedia FoundationMediawiki Core - Feed Utils--2025-04-11 16:23:12 Deep Dive
CVE-2025-32073 System message XSS in HTMLTags The Wikimedia FoundationMediawiki - HTML Tags--2025-04-11 16:22:48 Deep Dive
CVE-2025-32074 XSSes in Extension:ConfirmAccount The Wikimedia FoundationMediawiki - Confirm Account Extension--2025-04-11 16:22:23 Deep Dive
CVE-2025-32075 IP and user agent leaks in Extension:Tabs The Wikimedia FoundationMediawiki - Tabs Extension--2025-04-11 16:22:00 Deep Dive