Security Overview · miraheze/ManageWiki · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Self-XSS in ManageWiki review dialog via unsanitized field reflection
GHSA-859x-46h8-vcrv published Apr 24, 2025 by Universal-Omega

Moderate
Permission bypass when disabling extensions requiring certain permissions in Special:ManageWiki/extensions
GHSA-ccrf-x5rp-gppr published Apr 21, 2025 by Universal-Omega

Moderate
SQL injection vulnerability in NamespaceMigrationJob
GHSA-gg42-cv66-f5x7 published Apr 20, 2025 by Universal-Omega

High
Cross-Site Scripting in the extensions, settings, permissions and namespaces subpages of Special:ManageWiki
GHSA-4jr2-jhfm-2r84 published Feb 9, 2024 by redbluegreenhat

Moderate
'wikiconfig' API leaked private config variables set through ManageWiki
GHSA-jmc9-rv2f-g8vv published Apr 28, 2021 by RhinosF1

High

Learn more about advisories related to miraheze/ManageWiki in the GitHub Advisory Database