CNNVD-202601-5075 Information
CNNVD ID
CNNVD-202601-5075
Related CVE
- CNNVD Published: 2026-01-30
Description (Chinese)
Mediawiki - DiscussionTools Extension是Mediawiki开源的一个讨论页插件。 Mediawiki - DiscussionTools Extension 1.44版本和1.43版本存在安全漏洞,该漏洞源于表达式语言语句中特殊元素中和不当,可能导致正则表达式指数爆炸。
Description (English)
Mediawiki - DiscussionTools Extension is an open-page discussion plugin for Mediawiki. There is a security loophole in versions 1.44 and 1.43 of Mediawiki-DiscussionTools Extension, which stems from the misalignment of special elements in the expression statement and could lead to a regular expression index explosion.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-01-30
Last Modified
2026-02-24
References
https://gerrit.wikimedia.org/r/q/I126203ab1d3ec8c1719cbb5460a887e4d0c2cc6d https://gerrit.wikimedia.org/r/q/I563219f3298a8740e158d130492bf3d2897784d7 https://phabricator.wikimedia.org/T364910 https://phabricator.wikimedia.org/T396248 https://access.redhat.com/security/cve/cve-2025-11175
Patch
https://phabricator.wikimedia.org/T364910
Share on: