Wikimedia Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Content Management System12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Wikimedia MediaWiki10
Wikimedia Parsoid2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Remediation

Official Fix10
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploitability

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Access Vector

Not Defined0
Physical0
Local0
Adjacent0
Network12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Authentication

Not Defined0
High0
Low4
None8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

User Interaction

Not Defined0
Required4
None8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

C3BM Index

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Base

≤10
≤20
≤30
≤40
≤52
≤62
≤76
≤82
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤52
≤62
≤76
≤82
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

VulDB

≤10
≤20
≤30
≤42
≤54
≤62
≤70
≤84
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤74
≤84
≤92
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit 0-day

<1k6
<2k2
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Today

<1k12
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Exploit Market Volume

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

🔴 CTI Activities

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Affected Products (4): MediaWiki (9), Parsoid (1), analytics-quarry-web (1), mediawiki-extensions-I18nTags (1)

PublishedBaseTempVulnerabilityProdExpRemEPSSCTICVE
01/05/20234.44.3Wikimedia mediawiki-extensions-I18nTags Unlike Parser I18nTags_body.php cross site scriptingContent Management SystemNot DefinedOfficial Fix0.000630.12CVE-2018-25065
04/22/20214.84.6Wikimedia analytics-quarry-web Content Type app.py cross site scriptingContent Management SystemNot DefinedOfficial Fix0.000660.00CVE-2020-36324
04/09/20214.84.6Wikimedia Parsoid Wikitext WTUtils.php cross site scriptingContent Management SystemNot DefinedOfficial Fix0.000870.00CVE-2021-30458
07/10/20196.46.1Wikimedia MediaWiki API information disclosureContent Management SystemNot DefinedOfficial Fix0.002340.00CVE-2019-12474
07/10/20196.46.1Wikimedia MediaWiki API input validationContent Management SystemNot DefinedOfficial Fix0.001900.00CVE-2019-12473
07/10/20197.47.1Wikimedia MediaWiki Access Control access controlContent Management SystemNot DefinedOfficial Fix0.000780.00CVE-2019-12472
07/10/20195.24.9Wikimedia MediaWiki cross site scriptingContent Management SystemNot DefinedOfficial Fix0.005550.00CVE-2019-12471
07/10/20195.45.1Wikimedia MediaWiki RevisionDelete Page access controlContent Management SystemNot DefinedOfficial Fix0.000910.00CVE-2019-12470
07/10/20195.45.1Wikimedia MediaWiki Special:EditTags Username access controlContent Management SystemNot DefinedOfficial Fix0.000910.00CVE-2019-12469
07/10/20198.58.5Wikimedia MediaWiki Special:ChangeEmail access controlContent Management SystemNot DefinedNot Defined0.005610.00CVE-2019-12468

2 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 2 results.

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!