Approved changes feed: RSS · Atom
cpe:2.3:a:wikimedia_foundation:oathauth:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Wikimedia Foundation (f7943c01-50f6-53ec-b645-b355c8f75e02) |
|---|---|
| Product | Oathauth (ae3d766f-b030-5b12-a9f6-3a8082ade406) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-34087 |
vulnerable | 2026-06-03 15:22:08.995143 |
Users API leaks whether privileged users have their user groups disabled for lack of 2FA
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation OATHAuth.
This issue affects OATHAuth: from * before 1.43.7, 1.44.4, 1.45.2.
Published: 2026-05-11T14:40:12.778Z
Updated: 2026-05-11T16:03:51.630Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-11173 |
vulnerable | 2026-06-03 14:58:35.547200 |
Reauth for enabling 2FA can be bypassed by submitting a form
Vulnerability in Wikimedia Foundation OATHAuth. This vulnerability is associated with program files src/Special/OATHManage.Php.
This issue affects OATHAuth: from * before 1.39.14, 1.43.4, 1.44.1.
Published: 2026-02-03T00:27:45.487Z
Updated: 2026-02-03T21:08:02.478Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.