Known Vulnerabilities for products from Mediawiki
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mediawiki".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39937 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39936 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39935 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39934 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39933 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39841 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in Wikimedia Foundation Mediawiki... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-39840 json | Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in Wikimedia Foundation Me... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-39839 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in Wikimedia Foundation Mediawiki... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-39838 json | Not Provided | 2026-04-07 | 2026-04-08 | |
| CVE-2026-39837 json | Improper neutralization of Script-Related HTML tags in a web page (basic XSS) vulnerability in WikiWorks Mediawiki - Cargo Ex... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2025-67484 json | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiFormatXm... | Not Provided | 2026-02-03 | 2026-04-14 |
| CVE-2025-67483 json | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Founda... | Not Provided | 2026-02-03 | 2026-04-09 |
| CVE-2025-67481 json | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Founda... | Not Provided | 2026-02-03 | 2026-04-09 |
| CVE-2025-67480 json | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Api/ApiQueryRev... | Not Provided | 2026-02-03 | 2026-04-14 |
| CVE-2025-67478 json | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files includes/Mail/UserMailer... | Not Provided | 2026-02-03 | 2026-04-14 |
| CVE-2025-67477 json | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Founda... | Not Provided | 2026-02-03 | 2026-04-09 |
| CVE-2025-67476 json | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Import/Importab... | Not Provided | 2026-02-03 | 2026-04-14 |
| CVE-2025-67475 json | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Founda... | Not Provided | 2026-02-03 | 2026-04-09 |
| CVE-2025-61658 json | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/GlobalContributions/... | Not Provided | 2026-02-03 | 2026-04-14 |
| CVE-2025-61656 json | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Founda... | Not Provided | 2026-02-03 | 2026-04-09 |
Known software with vulnerabilities from Mediawiki
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mediawiki | Abusefilter | 1.19 |
| Application | Mediawiki | Checkuser | 1.19 |
| Application | Mediawiki | Mediawiki | - |
| Application | Mediawiki | Mobilefrontend | 1.31.0 |
| Application | Mediawiki | Rssreader | 0.2 |
| Application | Mediawiki | Skin | cosmos |
| Application | Mediawiki | Visual Editor | 1.34 |