Wikimedia Foundation Checkuser vulnerabilities
7 known vulnerabilities affecting wikimedia_foundation/checkuser.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
LOW4
Vulnerabilities
Page 1 of 1
CVE-2025-61649LOWCVSS 1.1≥ 7cedd58781d261f110651b6af4f41d2d11ae7309, < *2026-02-03
CVE-2025-61649 [LOW] CWE-22 CVE-2025-61649: Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files
Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php.
This issue affects CheckUser: from 7cedd58781d261f110651b6af4f41d2d11ae7309.
nvd
CVE-2025-61658LOWCVSS 1.3≥ *, < 1.43.4, 1.44.12026-02-03
CVE-2025-61658 [LOW] CWE-22 CVE-2025-61658: Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files
Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/GlobalContributions/GlobalContributionsPager.Php.
This issue affects CheckUser: from * before 1.43.4, 1.44.1.
nvd
CVE-2025-61647LOWCVSS 0.3≥ a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4, < *2026-02-03
CVE-2025-61647 [LOW] CWE-22 CVE-2025-61647: Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files
Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Api/Rest/Handler/UserInfoHandler.Php.
This issue affects CheckUser: from a3dc1bbcc33acbcca6831d6afaccbb1054c93a57, 0584eb2ad564648aa3ce9c555dd044dda02b55f4.
nvd
CVE-2025-61650LOWCVSS 1.1≥ *, < 795bf333272206a0189050d975e94b70eb7dc5072026-02-03
CVE-2025-61650 [LOW] CWE-79 CVE-2025-61650: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files src/Services/CheckUserUserInfoCardService.Php.
This issue affects CheckUser: from * before 795bf333272206a0189050d975e94b70eb7dc507.
nvd
CVE-2025-61648UNKNOWNCVSS 0.0≥ *, < 1.44.12026-02-03
CVE-2025-61648 [NONE] CWE-79 CVE-2025-61648: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser.TempAccounts/components/ShowIPButton.Vue, modules/ext.CheckUser.TempAccounts/SpecialBlock.Js.
This issue affects CheckUser: from * before
nvd
CVE-2025-61651UNKNOWNCVSS 0.0≥ *, < 1.44.12026-02-03
CVE-2025-61651 [NONE] CWE-79 CVE-2025-61651: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files modules/ext.CheckUser/checkuser/checkUserHelper/buildUserElement.Js.
This issue affects CheckUser: from * before 1.44.1.
nvd
CVE-2025-67478UNKNOWNCVSS 0.0≥ *, < 1.39.14, 1.43.4, 1.44.12026-02-03
CVE-2025-67478 [NONE] CVE-2025-67478: Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files
Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program files includes/Mail/UserMailer.Php.
This issue affects CheckUser: from * before 1.39.14, 1.43.4, 1.44.1.
nvd