Security Advisory

CVE-2025-11175

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-30 19:12:06

Last updated 2026-01-30 19:29:08

Assigner wikimedia-foundation

State PUBLISHED

Description

Improper Neutralization of Special Elements used in an Expression Language Statement (Expression Language Injection) vulnerability in The Wikimedia Foundation Mediawiki - DiscussionTools Extension allows Regular Expression Exponential Blowup.This issue affects Mediawiki - DiscussionTools Extension: 1.44, 1.43.

← Browse all CVEs View on cve.org ↗