Known Vulnerabilities for MediaWiki by Wikimedia Foundation
Listed below are 10 of the newest known vulnerabilities associated with "MediaWiki" by "Wikimedia Foundation".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39937 json | Improper removal of sensitive information before storage or transfer vulnerability in The Wikimedia Foundation Mediawiki - Ce... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39936 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundatio... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39935 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundatio... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39934 json | Loop with unreachable exit condition ('infinite loop') vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiment... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39933 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in The Wikimedia Foundatio... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39841 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in Wikimedia Foundation Mediawiki... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-39840 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Wikimedia Foundation Me... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-39839 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in Wikimedia Foundation Mediawiki... | Not Provided | 2026-04-07 | 2026-04-07 |
| CVE-2026-39838 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Wikimedia Foundation Me... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2026-39837 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in WikiWorks Mediawiki - Cargo Ex... | Not Provided | 2026-04-07 | 2026-04-07 |