VulnerableCode Package Details - pkg:deb/debian/mediawiki@1:1.43.3%2Bdfsg-1?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-4r56-cjss-1kef	Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue affects AbuseFilter: from fe0b1cb9e9691faf4d8d9bd80646589f6ec37615 before 1.43.2, 1.44.0.	CVE-2025-6592
VCID-95d1-mkm6-r3cq	Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/api/ApiFeedContributions.Php. This issue affects MediaWiki: from * before 1.39.13, 1.42.7 1.43.2, 1.44.0.	CVE-2025-6591
VCID-a8nh-mvhd-bka7	MediaWiki: MediaWiki: Vulnerability in authentication management	CVE-2025-6597
VCID-b5ke-cjtq-q3ev	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MultimediaViewer.This issue affects MultimediaViewer: from * before 1.39.13, 1.42.7, 1.43.2, 1.44.0.	CVE-2025-6595
VCID-bh5a-psbr-jfe6	Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php. This issue affects MediaWiki: >= 1.42.0.	CVE-2025-6589
VCID-cvrr-j6cm-zug4	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Vector. This vulnerability is associated with program files resources/skins.Vector.Js/portlets.Js, resources/skins.Vector.Legacy.Js/portlets.Js. This issue affects Vector: from >= 1.40.0 before 1.42.7, 1.43.2, 1.44.0.	CVE-2025-6596
VCID-fywr-5dsx-j7bd	MediaWiki: MediaWiki: Information disclosure via block list handling	CVE-2025-6927
VCID-h3d2-nr9e-nqbk	Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication.This issue affects Mediawiki - CentralAuth Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.	CVE-2025-6926
VCID-h789-pcxv-kbgd	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLUserTextField.Php. This issue affects MediaWiki: from * through 1.39.12, 1.42.76 1.43.1, 1.44.0.	CVE-2025-6590
VCID-k7qb-7hbj-1qc2	MediaWiki: MediaWiki: Cross-site Scripting vulnerability via improper input neutralization	CVE-2025-6594
VCID-xtd9-wbd9-67ew	Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/user/User.Php. This issue affects MediaWiki: from 1.27.0 before 1.39.13, 1.42.7 1.43.2, 1.44.0.	CVE-2025-6593

Vulnerability

Summary

Aliases

VCID-4r56-cjss-1kef

Vulnerability in Wikimedia Foundation AbuseFilter. This vulnerability is associated with program files includes/auth/AuthManager.Php. This issue affects AbuseFilter: from fe0b1cb9e9691faf4d8d9bd80646589f6ec37615 before 1.43.2, 1.44.0.

CVE-2025-6592

VCID-95d1-mkm6-r3cq

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/api/ApiFeedContributions.Php. This issue affects MediaWiki: from * before 1.39.13, 1.42.7 1.43.2, 1.44.0.

CVE-2025-6591

VCID-a8nh-mvhd-bka7

MediaWiki: MediaWiki: Vulnerability in authentication management

CVE-2025-6597

VCID-b5ke-cjtq-q3ev

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation MultimediaViewer.This issue affects MultimediaViewer: from * before 1.39.13, 1.42.7, 1.43.2, 1.44.0.

CVE-2025-6595

VCID-bh5a-psbr-jfe6

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/specials/pagers/BlockListPager.Php. This issue affects MediaWiki: >= 1.42.0.

CVE-2025-6589

VCID-cvrr-j6cm-zug4

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Vector. This vulnerability is associated with program files resources/skins.Vector.Js/portlets.Js, resources/skins.Vector.Legacy.Js/portlets.Js. This issue affects Vector: from >= 1.40.0 before 1.42.7, 1.43.2, 1.44.0.

CVE-2025-6596

VCID-fywr-5dsx-j7bd

MediaWiki: MediaWiki: Information disclosure via block list handling

CVE-2025-6927

VCID-h3d2-nr9e-nqbk

Improper Authentication vulnerability in Wikimedia Foundation Mediawiki - CentralAuth Extension allows : Bypass Authentication.This issue affects Mediawiki - CentralAuth Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2.

CVE-2025-6926

VCID-h789-pcxv-kbgd

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/htmlform/fields/HTMLUserTextField.Php. This issue affects MediaWiki: from * through 1.39.12, 1.42.76 1.43.1, 1.44.0.

CVE-2025-6590

VCID-k7qb-7hbj-1qc2

MediaWiki: MediaWiki: Cross-site Scripting vulnerability via improper input neutralization

CVE-2025-6594

VCID-xtd9-wbd9-67ew

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/user/User.Php. This issue affects MediaWiki: from 1.27.0 before 1.39.13, 1.42.7 1.43.2, 1.44.0.

CVE-2025-6593

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T11:33:12.787971+00:00	Debian Importer	Fixing	VCID-bh5a-psbr-jfe6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:04:53.391518+00:00	Debian Importer	Fixing	VCID-h789-pcxv-kbgd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:54:15.553579+00:00	Debian Importer	Fixing	VCID-fywr-5dsx-j7bd	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:54:08.159069+00:00	Debian Importer	Fixing	VCID-cvrr-j6cm-zug4	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:37:20.320588+00:00	Debian Importer	Fixing	VCID-h3d2-nr9e-nqbk	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:13:07.112582+00:00	Debian Importer	Fixing	VCID-k7qb-7hbj-1qc2	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:04:44.686019+00:00	Debian Importer	Fixing	VCID-b5ke-cjtq-q3ev	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:58:27.000487+00:00	Debian Importer	Fixing	VCID-xtd9-wbd9-67ew	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:52:25.574741+00:00	Debian Importer	Fixing	VCID-4r56-cjss-1kef	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:50:21.262502+00:00	Debian Importer	Fixing	VCID-a8nh-mvhd-bka7	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:42:26.283757+00:00	Debian Importer	Fixing	VCID-95d1-mkm6-r3cq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-12T18:14:34.057276+00:00	Debian Importer	Fixing	VCID-fywr-5dsx-j7bd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T18:14:34.000918+00:00	Debian Importer	Fixing	VCID-h3d2-nr9e-nqbk	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T18:14:33.375892+00:00	Debian Importer	Fixing	VCID-cvrr-j6cm-zug4	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T18:14:32.989504+00:00	Debian Importer	Fixing	VCID-h789-pcxv-kbgd	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-12T18:14:32.926615+00:00	Debian Importer	Fixing	VCID-bh5a-psbr-jfe6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:10:02.620039+00:00	Debian Importer	Fixing	VCID-k7qb-7hbj-1qc2	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:05:44.867766+00:00	Debian Importer	Fixing	VCID-4r56-cjss-1kef	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:05:04.170754+00:00	Debian Importer	Fixing	VCID-b5ke-cjtq-q3ev	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:01:09.757140+00:00	Debian Importer	Fixing	VCID-xtd9-wbd9-67ew	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:56:18.348328+00:00	Debian Importer	Fixing	VCID-a8nh-mvhd-bka7	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:51:05.569835+00:00	Debian Importer	Fixing	VCID-95d1-mkm6-r3cq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:45:54.804001+00:00	Debian Importer	Fixing	VCID-fywr-5dsx-j7bd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:54.748439+00:00	Debian Importer	Fixing	VCID-h3d2-nr9e-nqbk	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:54.136930+00:00	Debian Importer	Fixing	VCID-a8nh-mvhd-bka7	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:54.074914+00:00	Debian Importer	Fixing	VCID-cvrr-j6cm-zug4	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:54.014431+00:00	Debian Importer	Fixing	VCID-b5ke-cjtq-q3ev	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.951754+00:00	Debian Importer	Fixing	VCID-k7qb-7hbj-1qc2	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.888575+00:00	Debian Importer	Fixing	VCID-xtd9-wbd9-67ew	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.825598+00:00	Debian Importer	Fixing	VCID-4r56-cjss-1kef	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.769354+00:00	Debian Importer	Fixing	VCID-95d1-mkm6-r3cq	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.706244+00:00	Debian Importer	Fixing	VCID-h789-pcxv-kbgd	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:45:53.643404+00:00	Debian Importer	Fixing	VCID-bh5a-psbr-jfe6	https://security-tracker.debian.org/tracker/data/json	38.1.0