GCVE - cpe:2.3:a:wikimedia_foundation:mediawiki_-_ipinfo

Approved changes feed: RSS · Atom

cpe:2.3:a:wikimedia_foundation:mediawiki_-_ipinfo_extension:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Wikimedia Foundation (`f7943c01-50f6-53ec-b645-b355c8f75e02`)
Product	Mediawiki Ipinfo Extension (`8f341a8e-197d-57b9-a742-2162f11c3488`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-53482`	vulnerable	2026-06-03 15:03:54.141649	IPInfo: Message key XSS through several IPInfo messages in infobox and popup Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation Mediawiki - IPInfo Extension allows Cross-Site Scripting (XSS).This issue affects Mediawiki - IPInfo Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2. Published: 2025-07-04T16:01:46.252Z Updated: 2025-07-08T17:38:20.332Z Open on db.gcve.eu Reference links https://phabricator.wikimedia.org/T394393 https://gerrit.wikimedia.org/r/q/I66221bae94cf222531a7dc5622b2d43e01f7f8eb	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-53481`	vulnerable	2026-06-03 15:03:54.141313	Denial of service vector on ipinfo/v0/norevision Uncontrolled Resource Consumption vulnerability in Wikimedia Foundation Mediawiki - IPInfo Extension allows Excessive Allocation.This issue affects Mediawiki - IPInfo Extension: from 1.39.X before 1.39.13, from 1.42.X before 1.42.7, from 1.43.X before 1.43.2. Published: 2025-07-04T15:47:46.299Z Updated: 2025-07-08T17:38:27.242Z Open on db.gcve.eu Reference links https://phabricator.wikimedia.org/T392976 https://gerrit.wikimedia.org/r/q/I474b7a1b3bc1e7597fee0826a18a0cf042359f0f https://gerrit.wikimedia.org/r/q/I08a7154f8fa08bb6f0940e522075bdc2a3d4433f	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Mediawiki Ipinfo Extension

PURL mappings

Vulnerability references

Contribute