Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CreateWiki — Vulnerabilities & Security Advisories 6

All 6 CVE vulnerabilities found in CreateWiki, with AI-generated Chinese analysis, references, and POCs.

Vendor: miraheze

CVE IDTitleCVSSSeverityPublished
CVE-2024-47781 Cross-site Scripting (XSS) in Special:RequestWikiQueue when displaying sitename in CreateWiki CWE-79 5.4 -2024-10-07
CVE-2024-34701 CreateWiki vulnerable to impersonation of wiki requester CWE-863 5.9 Medium2024-05-13
CVE-2024-29898 Oversight in fix for GHSA-4rcf-3cj2-46mq may have exposed suppressed wiki requests on private wikis CWE-200 4.9 Medium2024-03-28
CVE-2024-29897 CreateWiki Leak of suppressed wiki requests outside of `CreateWikiGlobalWiki` CWE-200 4.9 Medium2024-03-28
CVE-2024-29883 CreateWiki's wiki request suppression ignores the suppression settings set by the suppressor CWE-200 4.9 Medium2024-03-26
CVE-2022-24813 Authentication Bypass Using an Alternate Path or Channel in CreateWiki CWE-288 5.3 Medium2022-04-04

All 6 known CVE vulnerabilities affecting CreateWiki with full Chinese analysis, references, and POCs where available.