CVE-2025-61647Path Traversal in Foundation Checkuser

CWE-22Path Traversal2 documents2 sources
Severity
0.3LOWNVD
EPSS
0.1%
top 74.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Wikimedia Foundation Checkuser
Timeline
PublishedFeb 3

Description

Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php. This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Packages1 packages

CVEListV5wikimedia_foundation/checkusera3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4*

🔴Vulnerability Details

1
GHSA
GHSA-j8mp-qmj4-gphg: Vulnerability in Wikimedia Foundation CheckUser2026-02-03