Unsanitized Input Exposure in Wikimedia Foundation MediaWiki
CVE-2025-61634
NONE
What is CVE-2025-61634?
This vulnerability in Wikimedia Foundation's MediaWiki arises from the improper handling of unsanitized input in the program files located at includes/Rest/Handler/PageHTMLHandler.php. Attackers exploiting this vulnerability can leverage the lack of input validation, potentially leading to unintended behavior in the software. As a result, users running vulnerable versions of MediaWiki before 1.39.14, 1.43.4, or 1.44.1 may be at risk of exposure or manipulation of sensitive information.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
MediaWiki * < 1.39.14, 1.43.4, 1.44.1
References
CVSS V4
Score:
Severity:
NONE
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown
Timeline
Vulnerability published
Vulnerability Reserved