CNNVD-202602-515 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-515
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Wikimedia TextExtracts是Wikimedia基金会的一个词条内容提取扩展。 Wikimedia TextExtracts 1.39.14之前版本、1.43.4之前版本和1.44.1之前版本存在安全漏洞,该漏洞源于在返回提取内容时不会检查读取权限。
Description (English)
Wikimedia TextExtracts is an extension of the Wikimedia Foundation ’ s vocabulary. There is a security loophole in the pre-Wikimedia TextExtracts 1.39.14, pre-1.43.4 and pre-1.44.1 versions, which stems from the fact that read permissions are not checked when returning to extract content.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
维基媒体
Published
2026-02-03
Last Modified
2026-02-24
References
https://phabricator.wikimedia.org/T397577
Patch
https://www.mediawiki.org/wiki/Extension:TextExtracts
Share on: