VulnerableCode Package Details - pkg:deb/debian/mediawiki@1:1.35.13-1~deb11u1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-2xja-2whv-fqe4	mediawiki: diff-multi-sameuser ("X intermediate revisions by the same user not shown") ignores username suppression	CVE-2023-45362
VCID-ea7c-xk4h-13fs	mediawiki: stored XSS leads to privilege escalation	CVE-2023-3550
VCID-jm7q-2w3j-buhh	MediaWiki Denial of Service vulnerability An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.	CVE-2023-45363 GHSA-w5fx-cx7f-6vr9
VCID-zj5a-p9u4-ducw	mediawiki: XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages	CVE-2023-45360

Vulnerability

Summary

Aliases

VCID-2xja-2whv-fqe4

mediawiki: diff-multi-sameuser ("X intermediate revisions by the same user not shown") ignores username suppression

CVE-2023-45362

VCID-ea7c-xk4h-13fs

mediawiki: stored XSS leads to privilege escalation

CVE-2023-3550

VCID-jm7q-2w3j-buhh

MediaWiki Denial of Service vulnerability An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.

CVE-2023-45363
GHSA-w5fx-cx7f-6vr9

VCID-zj5a-p9u4-ducw

mediawiki: XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages

CVE-2023-45360

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T09:48:16.517393+00:00	Debian Importer	Fixing	VCID-jm7q-2w3j-buhh	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:26:40.882089+00:00	Debian Importer	Fixing	VCID-2xja-2whv-fqe4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:23:33.527009+00:00	Debian Importer	Fixing	VCID-ea7c-xk4h-13fs	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:46:21.015332+00:00	Debian Importer	Fixing	VCID-zj5a-p9u4-ducw	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T18:14:30.944495+00:00	Debian Importer	Fixing	VCID-jm7q-2w3j-buhh	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:18:07.380453+00:00	Debian Importer	Fixing	VCID-2xja-2whv-fqe4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:16:15.447047+00:00	Debian Importer	Fixing	VCID-ea7c-xk4h-13fs	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:53:31.972338+00:00	Debian Importer	Fixing	VCID-zj5a-p9u4-ducw	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:45:51.624939+00:00	Debian Importer	Fixing	VCID-jm7q-2w3j-buhh	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:51.563833+00:00	Debian Importer	Fixing	VCID-2xja-2whv-fqe4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:51.441161+00:00	Debian Importer	Fixing	VCID-zj5a-p9u4-ducw	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:51.195085+00:00	Debian Importer	Fixing	VCID-ea7c-xk4h-13fs	https://security-tracker.debian.org/tracker/data/json	38.1.0