Security Advisory

CVE-2026-39934

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-07 22:00:46
Last updated 2026-04-08 22:04:41
Assigner wikimedia-foundation
State PUBLISHED

Description

Loop with unreachable exit condition (infinite loop) vulnerability in The Wikimedia Foundation Mediawiki - GrowthExperiments Extension allows Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions. This issue was remediated only on the `master` branch.