Vulnerability-Lookup

CVE-2025-53093 (GCVE-0-2025-53093)

Vulnerability from cvelistv5 – Published: 2025-06-27 17:43 – Updated: 2025-06-27 17:56

Title

TabberNeue vulnerable to Stored XSS through wikitext

Summary

TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the `<tabber>` tag. Version 3.1.1 contains a patch for the bug.

Severity

8.6 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-80 - Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)

Assigner

GitHub_M

References

6 references

URL	Tags
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_CONFIRM
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_MISC
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_MISC
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_MISC
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_MISC
https://github.com/StarCitizenTools/mediawiki-ext…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
StarCitizenTools	mediawiki-extensions-TabberNeue	Affected: >= 3.0.0, < 3.1.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2025-53093",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-06-27T17:52:29.743640Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-27T17:56:37.678Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "mediawiki-extensions-TabberNeue",
          "vendor": "StarCitizenTools",
          "versions": [
            {
              "status": "affected",
              "version": "\u003e= 3.0.0, \u003c 3.1.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the `\u003ctabber\u003e` tag. Version 3.1.1 contains a patch for the bug."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 8.6,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-79",
              "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-80",
              "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-06-27T17:43:24.107Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m"
        },
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612"
        },
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa"
        },
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31"
        },
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76"
        },
        {
          "name": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1"
        }
      ],
      "source": {
        "advisory": "GHSA-jfj7-249r-7j2m",
        "discovery": "UNKNOWN"
      },
      "title": "TabberNeue vulnerable to Stored XSS through wikitext"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2025-53093",
    "datePublished": "2025-06-27T17:43:24.107Z",
    "dateReserved": "2025-06-25T13:41:23.085Z",
    "dateUpdated": "2025-06-27T17:56:37.678Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-53093",
      "date": "2026-05-27",
      "epss": "0.00488",
      "percentile": "0.65667"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-53093\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2025-06-27T18:15:50.773\",\"lastModified\":\"2025-06-30T18:38:23.493\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the `\u003ctabber\u003e` tag. Version 3.1.1 contains a patch for the bug.\"},{\"lang\":\"es\",\"value\":\"TabberNeue es una extensi\u00f3n de MediaWiki que permite crear pesta\u00f1as en la wiki. A partir de la versi\u00f3n 3.0.0 y anteriores a la 3.1.1, cualquier usuario puede insertar HTML arbitrario en el DOM insertando un payload en cualquier atributo permitido de la etiqueta ``. La versi\u00f3n 3.1.1 incluye un parche para este error.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":4.7}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"},{\"lang\":\"en\",\"value\":\"CWE-80\"}]}],\"references\":[{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m\",\"source\":\"security-advisories@github.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-53093\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-06-27T17:52:29.743640Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-06-27T17:53:05.282Z\"}}], \"cna\": {\"title\": \"TabberNeue vulnerable to Stored XSS through wikitext\", \"source\": {\"advisory\": \"GHSA-jfj7-249r-7j2m\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"vendor\": \"StarCitizenTools\", \"product\": \"mediawiki-extensions-TabberNeue\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 3.0.0, \u003c 3.1.1\"}]}], \"references\": [{\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76\", \"tags\": [\"x_refsource_MISC\"]}, {\"url\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1\", \"name\": \"https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the `\u003ctabber\u003e` tag. Version 3.1.1 contains a patch for the bug.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-79\", \"description\": \"CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)\"}]}, {\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-80\", \"description\": \"CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2025-06-27T17:43:24.107Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-53093\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-06-27T17:56:37.678Z\", \"dateReserved\": \"2025-06-25T13:41:23.085Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2025-06-27T17:43:24.107Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2025-53093

Vulnerability from fkie_nvd - Published: 2025-06-27 18:15 - Updated: 2026-04-15 00:35

Severity

8.6 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa
	security-advisories@github.com	https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "TabberNeue is a MediaWiki extension that allows the wiki to create tabs. Starting in version 3.0.0 and prior to version 3.1.1, any user can insert arbitrary HTMLinto the DOM by inserting a payload into any allowed attribute of the `\u003ctabber\u003e` tag. Version 3.1.1 contains a patch for the bug."
    },
    {
      "lang": "es",
      "value": "TabberNeue es una extensi\u00f3n de MediaWiki que permite crear pesta\u00f1as en la wiki. A partir de la versi\u00f3n 3.0.0 y anteriores a la 3.1.1, cualquier usuario puede insertar HTML arbitrario en el DOM insertando un payload en cualquier atributo permitido de la etiqueta ``. La versi\u00f3n 3.1.1 incluye un parche para este error."
    }
  ],
  "id": "CVE-2025-53093",
  "lastModified": "2026-04-15T00:35:42.020",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 8.6,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 4.7,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-06-27T18:15:50.773",
  "references": [
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa"
    },
    {
      "source": "security-advisories@github.com",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        },
        {
          "lang": "en",
          "value": "CWE-80"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    }
  ]
}

GHSA-JFJ7-249R-7J2M

Vulnerability from github – Published: 2025-06-27 20:50 – Updated: 2025-06-27 20:50

Summary

TabberNeue vulnerable to Stored XSS through wikitext

Details

Summary

Arbitrary HTML can be inserted into the DOM by inserting a payload into any allowed attribute of the <tabber> tag.

Details

The args provided within the wikitext as attributes to the <tabber> tag are passed to the TabberComponentTabs class: https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76

In TabberComponentTabs, the attributes are validated before being supplied to the Tabs template. https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31 However, the validation is insufficient. What Sanitizer::validateTagAttributes does is call validateAttributes, which

     * - Discards attributes not on the given list
     * - Unsafe style attributes are discarded
     * - Invalid id attributes are re-encoded

However, the attribute values are expected to be escaped when inserted into HTML.

The attribute values are then inserted into HTML without being escaped: https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1

PoC

XSS through attributes:

Go to Special:ExpandTemplates and insert the following wikitext:

<tabber class='test123" onmouseenter="alert(1)"'>
|-|First Tab Title=
First tab content goes here.
</tabber>

Press "OK"
Hover over the tabber

XSS through script tags:

Go to Special:ExpandTemplates and insert the following wikitext:

<tabber class='test123"&gt;&lt;script&gt;alert(2)&lt;/script&gt;'>
|-|First Tab Title=
First tab content goes here.
</tabber>

Press "OK"

Impact

Arbitrary HTML can be inserted into the DOM by any user, allowing for JavaScript to be executed.

Severity

8.6 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "starcitizentools/tabber-neue"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "3.0.0"
            },
            {
              "fixed": "3.1.1"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2025-53093"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79",
      "CWE-80"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2025-06-27T20:50:40Z",
    "nvd_published_at": "2025-06-27T18:15:50Z",
    "severity": "HIGH"
  },
  "details": "### Summary\nArbitrary HTML can be inserted into the DOM by inserting a payload into any allowed attribute of the `\u003ctabber\u003e` tag.\n\n### Details\n\nThe `args` provided within the wikitext as attributes to the `\u003ctabber\u003e` tag are passed to the TabberComponentTabs class:\nhttps://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76\n\nIn TabberComponentTabs, the attributes are validated before being supplied to the Tabs template.\nhttps://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31\nHowever, the validation is insufficient.\nWhat `Sanitizer::validateTagAttributes` does is call `validateAttributes`, which\n```\n\t * - Discards attributes not on the given list\n\t * - Unsafe style attributes are discarded\n\t * - Invalid id attributes are re-encoded\n```\nHowever, the attribute values are expected to be escaped when inserted into HTML.\n\nThe attribute values are then inserted into HTML without being escaped:\nhttps://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1\n\n### PoC\n#### XSS through attributes:\n1. Go to Special:ExpandTemplates and insert the following wikitext:\n```\n\u003ctabber class=\u0027test123\" onmouseenter=\"alert(1)\"\u0027\u003e\n|-|First Tab Title=\nFirst tab content goes here.\n\u003c/tabber\u003e\n```\n2. Press \"OK\"\n3. Hover over the tabber\n\n![image](https://github.com/user-attachments/assets/bb65a587-e277-4936-b9f9-400ad7c39040)\n\n\n#### XSS through script tags:\n1. Go to Special:ExpandTemplates and insert the following wikitext:\n```\n\u003ctabber class=\u0027test123\"\u0026gt;\u0026lt;script\u0026gt;alert(2)\u0026lt;/script\u0026gt;\u0027\u003e\n|-|First Tab Title=\nFirst tab content goes here.\n\u003c/tabber\u003e\n```\n2. Press \"OK\"\n![image](https://github.com/user-attachments/assets/a51ede5c-f9a0-49be-875e-37d30a083721)\n\n### Impact\nArbitrary HTML can be inserted into the DOM by any user, allowing for JavaScript to be executed.",
  "id": "GHSA-jfj7-249r-7j2m",
  "modified": "2025-06-27T20:50:40Z",
  "published": "2025-06-27T20:50:40Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/security/advisories/GHSA-jfj7-249r-7j2m"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53093"
    },
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/4cdf217ef96da74a1503d1dd0bb0ed898fc2a612"
    },
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/commit/62ce0fcdf32bd3cfa77f92ff6b940459a14315fa"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue"
    },
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Components/TabberComponentTabs.php#L15-L31"
    },
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/Tabber.php#L76"
    },
    {
      "type": "WEB",
      "url": "https://github.com/StarCitizenTools/mediawiki-extensions-TabberNeue/blob/3a23b703ce36cfc4128e7921841f68230be4059a/includes/templates/Tabs.mustache#L1"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
      "type": "CVSS_V3"
    }
  ],
  "summary": "TabberNeue vulnerable to Stored XSS through wikitext"
}

WID-SEC-W-2025-1525

Vulnerability from csaf_certbund - Published: 2025-07-09 22:00 - Updated: 2025-07-23 22:00

Summary

MediaWiki Extensions und Skins: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: MediaWiki ist ein freies Wiki, das ursprünglich für den Einsatz auf Wikipedia entwickelt wurde.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in MediaWiki ausnutzen, um SQL-Injection- und XSS-Angriffe durchzuführen, Sicherheitsmechanismen zu umgehen, vertrauliche Informationen offenzulegen oder sich unbefugt höhere Berechtigungen zu verschaffen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2025-32956

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-32964

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-43861

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-49575

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-49576

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-49577

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-49578

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-49579

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53093

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53368

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53369

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53370

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53478

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53479

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53480

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53481

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53482

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53483

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53484

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53485

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53486

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53487

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53488

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53489

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53490

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53491

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53492

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53493

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53494

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53495

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53496

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53497

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53498

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53499

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53500

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53501

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-53502

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-6926

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-7056

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-7057

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-7362

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

CVE-2025-7363

Affected products

Known affected 4 products

Product	Identifier	Version
Open Source MediaWiki <1.43.2 Open Source / MediaWiki		<1.43.2
Open Source MediaWiki <1.42.7 Open Source / MediaWiki		<1.42.7
Debian Linux Debian	`cpe:/o:debian:debian_linux:-`	—
Open Source MediaWiki <1.39.13 Open Source / MediaWiki		<1.39.13

References

4 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://lists.wikimedia.org/hyperkitty/list/media…	external
https://lists.debian.org/debian-lts-announce/2025…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "MediaWiki ist ein freies Wiki, das urspr\u00fcnglich f\u00fcr den Einsatz auf Wikipedia entwickelt wurde.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in MediaWiki ausnutzen, um SQL-Injection- und XSS-Angriffe durchzuf\u00fchren, Sicherheitsmechanismen zu umgehen, vertrauliche Informationen offenzulegen oder sich unbefugt h\u00f6here Berechtigungen zu verschaffen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-1525 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1525.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-1525 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1525"
      },
      {
        "category": "external",
        "summary": "MediaWiki Extensions and Skins Security Release Supplement vom 2025-07-09",
        "url": "https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/thread/B757OC4UOPKOO4EYXNPUKQY2BS4CQE2E/"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-4249 vom 2025-07-23",
        "url": "https://lists.debian.org/debian-lts-announce/2025/07/msg00012.html"
      }
    ],
    "source_lang": "en-US",
    "title": "MediaWiki Extensions und Skins: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-07-23T22:00:00.000+00:00",
      "generator": {
        "date": "2025-07-24T07:52:25.673+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-1525",
      "initial_release_date": "2025-07-09T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-07-09T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2025-07-23T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.39.13",
                "product": {
                  "name": "Open Source MediaWiki \u003c1.39.13",
                  "product_id": "T044971"
                }
              },
              {
                "category": "product_version",
                "name": "1.39.13",
                "product": {
                  "name": "Open Source MediaWiki 1.39.13",
                  "product_id": "T044971-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mediawiki:mediawiki:1.39.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.42.7",
                "product": {
                  "name": "Open Source MediaWiki \u003c1.42.7",
                  "product_id": "T044972"
                }
              },
              {
                "category": "product_version",
                "name": "1.42.7",
                "product": {
                  "name": "Open Source MediaWiki 1.42.7",
                  "product_id": "T044972-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mediawiki:mediawiki:1.42.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.43.2",
                "product": {
                  "name": "Open Source MediaWiki \u003c1.43.2",
                  "product_id": "T044973"
                }
              },
              {
                "category": "product_version",
                "name": "1.43.2",
                "product": {
                  "name": "Open Source MediaWiki 1.43.2",
                  "product_id": "T044973-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:mediawiki:mediawiki:1.43.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "MediaWiki"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-32956",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-32956"
    },
    {
      "cve": "CVE-2025-32964",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-32964"
    },
    {
      "cve": "CVE-2025-43861",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-43861"
    },
    {
      "cve": "CVE-2025-49575",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-49575"
    },
    {
      "cve": "CVE-2025-49576",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-49576"
    },
    {
      "cve": "CVE-2025-49577",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-49577"
    },
    {
      "cve": "CVE-2025-49578",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-49578"
    },
    {
      "cve": "CVE-2025-49579",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-49579"
    },
    {
      "cve": "CVE-2025-53093",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53093"
    },
    {
      "cve": "CVE-2025-53368",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53368"
    },
    {
      "cve": "CVE-2025-53369",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53369"
    },
    {
      "cve": "CVE-2025-53370",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53370"
    },
    {
      "cve": "CVE-2025-53478",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53478"
    },
    {
      "cve": "CVE-2025-53479",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53479"
    },
    {
      "cve": "CVE-2025-53480",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53480"
    },
    {
      "cve": "CVE-2025-53481",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53481"
    },
    {
      "cve": "CVE-2025-53482",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53482"
    },
    {
      "cve": "CVE-2025-53483",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53483"
    },
    {
      "cve": "CVE-2025-53484",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53484"
    },
    {
      "cve": "CVE-2025-53485",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53485"
    },
    {
      "cve": "CVE-2025-53486",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53486"
    },
    {
      "cve": "CVE-2025-53487",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53487"
    },
    {
      "cve": "CVE-2025-53488",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53488"
    },
    {
      "cve": "CVE-2025-53489",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53489"
    },
    {
      "cve": "CVE-2025-53490",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53490"
    },
    {
      "cve": "CVE-2025-53491",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53491"
    },
    {
      "cve": "CVE-2025-53492",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53492"
    },
    {
      "cve": "CVE-2025-53493",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53493"
    },
    {
      "cve": "CVE-2025-53494",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53494"
    },
    {
      "cve": "CVE-2025-53495",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53495"
    },
    {
      "cve": "CVE-2025-53496",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53496"
    },
    {
      "cve": "CVE-2025-53497",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53497"
    },
    {
      "cve": "CVE-2025-53498",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53498"
    },
    {
      "cve": "CVE-2025-53499",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53499"
    },
    {
      "cve": "CVE-2025-53500",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53500"
    },
    {
      "cve": "CVE-2025-53501",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53501"
    },
    {
      "cve": "CVE-2025-53502",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-53502"
    },
    {
      "cve": "CVE-2025-6926",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-6926"
    },
    {
      "cve": "CVE-2025-7056",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-7056"
    },
    {
      "cve": "CVE-2025-7057",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-7057"
    },
    {
      "cve": "CVE-2025-7362",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-7362"
    },
    {
      "cve": "CVE-2025-7363",
      "product_status": {
        "known_affected": [
          "T044973",
          "T044972",
          "2951",
          "T044971"
        ]
      },
      "release_date": "2025-07-09T22:00:00.000+00:00",
      "title": "CVE-2025-7363"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-53093 (GCVE-0-2025-53093)

FKIE_CVE-2025-53093

GHSA-JFJ7-249R-7J2M

Summary

Details

PoC

XSS through attributes:

XSS through script tags:

Impact

WID-SEC-W-2025-1525

Tags

Sightings

Nomenclature