Command Injection Vulnerability in Wikimedia Foundation's Springboard Extension
CVE-2025-62696
6.9MEDIUM
What is CVE-2025-62696?
A command injection vulnerability exists in the Springboard Extension of the Wikimedia Foundation, allowing attackers to execute arbitrary commands through improperly neutralized special elements. This could lead to unauthorized access or manipulation of the system by sending crafted input that bypasses security measures. Users of the Springboard Extension are advised to apply updates and implement proper input validation strategies to mitigate risks.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Mediawiki Foundation - Springboard Extension master
References
CVSS V4
Score:
6.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Yaron_Koren