Vulnerabilidades en The Wikimedia Foundation
62 resultadosCVE-2024-47841MEDIUMPath traversal when loading stylesheetsEPSS 34.2%CVE-2025-62696MEDIUMMultiple critical security issues in SpringboardEPSS 1.2%CVE-2024-47849HIGHBackticks can allow the usage of not-allowed SQL functionsEPSS 0.5%CVE-2024-47848MEDIUMUser can review/unreview articles while blockedEPSS 0.5%CVE-2025-11175HIGHDiscussionTools should use better regexEPSS 0.4%CVE-2025-62670MEDIUMStored XSS through a system message in FlexDiagramsEPSS 0.4%CVE-2025-62662MEDIUMStored XSS through system messages in AdvancedSearchEPSS 0.4%CVE-2025-62664MEDIUMStored XSS through a system message in ImageRatingEPSS 0.4%CVE-2025-62667MEDIUMStored XSS through article extracts in GrowthExperimentsEPSS 0.4%CVE-2025-11937MEDIUMStored XSS through a system message in SecurePollEPSS 0.4%CVE-2025-62663MEDIUMStored XSS through a system message in UploadWizardEPSS 0.4%CVE-2025-62671MEDIUMStored XSS through wikitext in CargoEPSS 0.4%CVE-2025-62666MEDIUMDoS vector through the cirrusbuilddoc query APIEPSS 0.4%CVE-2025-62669MEDIUMUserInfoCard: activeLocalBlocksAllWikis does not do permissions checksEPSS 0.4%CVE-2025-32072MEDIUMHTML injection in feed output from i18n messageEPSS 0.4%CVE-2025-32080MEDIUMCross-origin data leak in mobilefrontend via lazy load imagesEPSS 0.4%CVE-2025-62668MEDIUMInsufficient permission checks in action=growthsetmentorEPSS 0.4%CVE-2024-47845MEDIUMCSS sanitizer used incorrectly, and is easily bypassedEPSS 0.4%CVE-2024-47847MEDIUMVarious XSSes found in CargoEPSS 0.4%CVE-2025-62652MEDIUMStored XSS in WebAuthn key nameEPSS 0.4%