← Voltar para CVEs
CVE-2025-53625
N/ADescricao
The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several #dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fixed in 3.6.4.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado7/10/2025
Ultima modificacao7/15/2025
Fontenvd
Avistamentos honeypot0
Fraquezas (CWE)
CWE-359
Referencias
https://github.com/Universal-Omega/DynamicPageList3/commit/a3dae0c89fb4214390c29ceffa23bbe2099986d6(security-advisories@github.com)
https://github.com/Universal-Omega/DynamicPageList3/security/advisories/GHSA-7pgw-q3qp-6pgq(security-advisories@github.com)
https://github.com/Universal-Omega/DynamicPageList3/security/advisories/GHSA-7pgw-q3qp-6pgq(134c704f-9b21-4f2e-91b3-4a467353bcc0)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.