CNNVD-202602-066 Information
CNNVD ID
CNNVD-202602-066
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
MediaWiki是美国维基媒体(Wikimedia)基金会的一套自由免费的基于网络的Wiki引擎。该产品可用于部署内部的知识管理和内容管理系统。 MediaWiki存在安全漏洞,该漏洞源于程序文件includes/specials/pagers/BlockListPager.Php和includes/api/ApiQueryBlocks.Php存在问题。以下版本受到影响:1.42.0至1.39.13之前版本、1.42.7版本、1.43.2版本和1.44.0版本。
Description (English)
MediaWiki is a free, free, web-based Wiki engine for the Wikimedia Foundation in the United States. The product can be used for the deployment of internal knowledge management and content management systems. MediaWiki has a security loophole, which stems from problems with the program document Includes/specials/pagers/BlockListPager.Php and Includes/api/ApiQueryBlocks.Php. The following versions were affected: pre-versions 1.42.0 to 1.39.13, version 1.42.7, version 1.4.3.2 and version 1.44.0.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-02-02
Last Modified
2026-02-24
References
https://phabricator.wikimedia.org/T397595
Patch
https://phabricator.wikimedia.org/T397595
Share on: