CNNVD-202507-3961 Information

CNNVD ID

CNNVD-202507-3961

Related CVE

CVE-2025-6595

• CNNVD Published: 2025-07-04

Description (Chinese)

MediaWiki是美国维基媒体（Wikimedia）基金会的一套自由免费的基于网络的Wiki引擎。该产品可用于部署内部的知识管理和内容管理系统。 MediaWiki存在安全漏洞，该漏洞源于在MultimediaViewer中通过系统消息容易受到存储型跨站脚本攻击。

Description (English)

MediaWiki is a free, free, web-based Wiki engine for the Wikimedia Foundation in the United States. The product can be used for the deployment of internal knowledge management and content management systems. MediaWiki has a security loophole, which stems from its vulnerability to storage-type cross-site scrip attacks through system messages in Multimedia Viewer.

Vulnerability Type

其他

Affected Vendor

维基媒体

Published

2025-07-04

Last Modified

2026-02-24

References

https://phabricator.wikimedia.org/T394863 https://vigilance.fr/vulnerability/MediaWiki-multiple-vulnerabilities-dated-04-07-2025-47596

Patch

https://www.mediawiki.org/wiki/MediaWiki