Matmarex

**Name of the Vulnerable Software and Affected Versions** MediaWiki DiscussionTools extension (affected versions not specified) **Description** A Regular Expression Denial-of-Service issue exists in the DiscussionTools extension, which is included with MediaWiki, the software that powers Wikipedia. This can lead to a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** MediaWiki DoubleWiki extension versions through 1.39.3 **Description** An issue was discovered in the DoubleWiki extension for MediaWiki that allows XSS via the column alignment feature in includes/DoubleWiki.php. **Recommendations** For MediaWiki DoubleWiki extension versions through 1.39.3, update to a version that fixes the XSS issue in includes/DoubleWiki.php to prevent exploitation. As a temporary workaround, consider disabling the column alignment feature in includes/DoubleWiki.php until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Mediawiki versions through 1.37.1 **Description** An issue was discovered in the AntiSpoof extension where the check for the `override-antispoof` permission is incorrect. **Recommendations** For versions through 1.37.1, as a temporary workaround, consider disabling the AntiSpoof extension until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions through 1.36.2 MediaSearch extension versions through 1.36.2 **Description** An issue was discovered in Special:MediaSearch in the MediaSearch extension. The suggestion text, a parameter to `mediasearch-did-you-mean`, was not being properly sanitized, allowing for the injection and execution of HTML and JavaScript via the `intitle:` search operator within the query. **Recommendations** For MediaWiki versions through 1.36.2, update to a version that includes the fix for this issue. For the MediaSearch extension versions through 1.36.2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the `Special:MediaSearch` page until a patch is available. Avoid using the `intitle:` search operator in the query until the issue is resolved.

Name of the Vulnerable Software and Affected Versions: MediaWiki versions 1.31 before 1.31.1 MediaWiki version 1.30.1 MediaWiki version 1.29.3 MediaWiki version 1.27.5 Description: The issue is related to insecure privilege management in MediaWiki, allowing a remote attacker to impact the integrity of protected information using the `$wgRateLimits` argument. Specifically, the `$wgRateLimits` entry for 'user' overrides that for 'newbie', contrary to the documentation. Recommendations: For MediaWiki version 1.31 before 1.31.1, update to version 1.31.1 or later. For MediaWiki version 1.30.1, consider updating to a newer version. For MediaWiki version 1.29.3, consider updating to a newer version. For MediaWiki version 1.27.5, consider updating to a newer version. As a temporary workaround, consider reviewing and adjusting the `$wgRateLimits` settings to ensure proper privilege management.

**Name of the Vulnerable Software and Affected Versions** MediaWiki versions prior to 1.23.12 MediaWiki versions 1.24.x prior to 1.24.5 MediaWiki versions 1.25.x prior to 1.25.4 MediaWiki versions 1.26.x prior to 1.26.1 **Description** A cross-site scripting (XSS) issue allows remote authenticated users to inject arbitrary web script or HTML via wikitext when MediaWiki is configured with a relative URL. This can be demonstrated by a wikilink to a page named "javascript:alert('XSS!')". **Recommendations** For MediaWiki versions prior to 1.23.12, update to version 1.23.12 or later. For MediaWiki versions 1.24.x prior to 1.24.5, update to version 1.24.5 or later. For MediaWiki versions 1.25.x prior to 1.25.4, update to version 1.25.4 or later. For MediaWiki versions 1.26.x prior to 1.26.1, update to version 1.26.1 or later.