QwikSec

Security Database

CVE

CWE

Training

CVE-2025-62661

Published: Oct 21, 2025

Modified: Oct 21, 2025

PUBLISHED

Description

Incorrect Default Permissions vulnerability in The Wikimedia Foundation Mediawiki - Thanks Extension, Mediawiki - Growth Experiments Extension allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Mediawiki - Thanks Extension, Mediawiki - Growth Experiments Extension: from 1.43 before 1.44.

Vendor	Product	Versions
The Wikimedia Foundation	Mediawiki - Thanks Extension, Mediawiki - Growth Experiments Extension	affected `1.43 - < 1.44`

Weaknesses (CWE)

References

https://phabricator.wikimedia.org/T397497

https://gerrit.wikimedia.org/r/q/Idbc1b5a288ffaa7074eedcbac066358a8ec649dc

https://gerrit.wikimedia.org/r/q/Ia584966bb7d4d707eef50529293aa3d468470f18

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.