Vulnerabilidades en Wikimedia Foundation
118 resultadosCVE-2026-39839MEDIUMStored XSS through URLs in Cargo's map formatEPSS 0.2%CVE-2025-23081MEDIUMVarious security vulnerabilities in Extension:DataTransferEPSS 0.2%CVE-2025-53480MEDIUMCheckUser: Reflected Cross-Site Scripting (XSS) in Special:Investigate (Account information tab) via unsanitized i18n messagesEPSS 0.2%CVE-2026-34094LOWCustomized help link for page protection indicator is relative to subpage name, because the link target is missing the "/wiki/" prefixEPSS 0.2%CVE-2025-7057MEDIUMStored XSS in QuizEPSS 0.2%CVE-2025-7362MEDIUMMsUpload: Stored Cross-Site Scripting (XSS) via unsanitized msu-continue system messageEPSS 0.2%CVE-2025-53496MEDIUMStored XSS in MediaSearchEPSS 0.2%CVE-2025-53479MEDIUMCheckUser: Reflected Cross-Site Scripting (XSS) in Special:CheckUser via unsanitized internationalized messageEPSS 0.2%CVE-2025-53491MEDIUMXSS in FlaggedRevsEPSS 0.2%CVE-2025-53497MEDIUMStored XSS in RelatedArticlesEPSS 0.2%CVE-2025-53487MEDIUMApprovedRevs: Stored Cross-Site Scripting (XSS) via unsanitized system messagesEPSS 0.2%CVE-2025-53478MEDIUMCheckUser: Reflected Cross-Site Scripting (XSS) in Special:Investigate via unsanitized i18n messagesEPSS 0.2%CVE-2026-0670MEDIUMStored XSS through a system message and a user-provided parameter in ProofreadPageEPSS 0.2%CVE-2026-39841MEDIUMStored XSS through list fields on Cargo's page values and Special:CargoTablesEPSS 0.2%CVE-2026-39840MEDIUMCSS injection in multiple Cargo display formatsEPSS 0.2%CVE-2025-61656NONEXSS when pasting into VEEPSS 0.1%CVE-2025-61655NONEStored XSS through system messages in VisualEditorEPSS 0.1%CVE-2025-61648NONEStored XSS through system messages in CheckUserEPSS 0.1%