Security Advisory

CVE-2025-54865

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-05 00:03:46

Last updated 2025-08-07 15:51:40

Assigner GitHub_M

State PUBLISHED

Description

Tilesheets MediaWiki Extension adds a table lookup parser function for an item and returns the requested image. A missing backtick in a query executed by the Tilesheets extension allows users to insert and potentially execute malicious SQL code. This issue has not been fixed.

← Browse all CVEs View on cve.org ↗