CNNVD-202601-1618 Information
Jan 09, 2026
cve
CNNVD ID
CNNVD-202601-1618
Related CVE
- CNNVD Published: 2026-01-09
Description (Chinese)
MediaWiki - CampaignEvents是MediaWiki开源的一个社区活动插件。 MediaWiki - CampaignEvents 1.45版本、1.44版本、1.43版本和1.39版本存在安全漏洞,该漏洞源于缺少授权,可能导致权限滥用。
Description (English)
MediaWiki - CampaignEvents is a community activity plugin for MediaWiki Open Source. There is a security loophole in MediaWiki - CampaignEvents Version 1.45, 1.44, 1.43 and 1.39, which stems from a lack of authorization and may lead to abuse of authority.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-01-09
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/q/I7ed0049691258c8bd2555e599b9b88490fbe3358 https://phabricator.wikimedia.org/T410560 https://access.redhat.com/security/cve/cve-2026-0817
Patch
https://www.mediawiki.org/wiki/Extension:CampaignEvents
Share on: