Mediawiki - GrowthExperiments Extension — Vulnerabilities & Security Advisories 4

All 4 CVE vulnerabilities found in Mediawiki - GrowthExperiments Extension, with AI-generated Chinese analysis, references, and POCs.

Vendor: The Wikimedia Foundation

CVE ID	Title	CVSS	Severity	Paused
CVE-2026-39934	Growth Experiments ReassignMenteesJob runs as an infinite loop CWE-835	5.9^AI	Medium^AI	2026-04-07
CVE-2026-22713	Stored XSS through edit summaries in GrowthExperiments CWE-79	6.1	-	2026-01-09
CVE-2025-62667	Stored XSS through article extracts in GrowthExperiments CWE-79	6.1^AI	Medium^AI	2025-10-18
CVE-2025-62668	Insufficient permission checks in action=growthsetmentor CWE-276	7.5^AI	High^AI	2025-10-18

All 4 known CVE vulnerabilities affecting Mediawiki - GrowthExperiments Extension with full Chinese analysis, references, and POCs where available.

Support Us — Your donation helps us keep running

Mediawiki - GrowthExperiments Extension — Vulnerabilities & Security Advisories 4