mediawiki
Security Risk Profile
Security Risk Score
Comprehensive risk assessment based on 464 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from December 31, 2004 to present
Threat Assessment
Severity Distribution
Exploit Likelihood
Age Distribution
Common Weaknesses (CWE)
Most Affected Products
Recent Vulnerabilities
See more →action=raw with Special:Mypage subpage title responds with "Content-Type: text/html" on ctype=text/javascript request
Customized help link for page protection indicator is relative to subpage name, because the link target is missing the "/wiki/" prefix
Special:UserRights allows viewing user rights from private wiki
Block UI elements in 'tools'-sidebar shows presence of an autoblocked IP
User localization leaked by AbuseFilter + EventStream
Suggested investigations: Handle suppressed usernames
RecentChanges entries expose suppressed content via generated log page html
Users API leaks whether privileged users have their user groups disabled for lack of 2FA
Stored XSS through the dynamic table format in Cargo
Stored XSS through list fields on Cargo's page values and Special:CargoTables
Monitor mediawiki in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.