QwikSec

Security Database

CVE

CWE

Training

CVE-2025-23074

Published: Jan 14, 2025

Modified: Jan 31, 2025

PUBLISHED

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Mediawiki - SocialProfile Extension allows Functionality Misuse.This issue affects Mediawiki - SocialProfile Extension: from 1.39.X before 1.39.11, from 1.41.X before 1.41.3, from 1.42.X before 1.42.2.

Vendor	Product	Versions
Wikimedia Foundation	Mediawiki - SocialProfile Extension	affected `1.39.x - < 1.39.11` affected `1.41.x - < 1.41.3` affected `1.42.x - < 1.42.2`

Weaknesses (CWE)

References

https://phabricator.wikimedia.org/T373265

https://gerrit.wikimedia.org/r/q/I4b77ced314bc6cea0ef3657a82e7467d3661fe2a

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2025-23074 - Security Vulnerability | QwikSec