CVE-2026-22712

Improper Encoding or Escaping of Output due to magic word replacement in ParserAfterTidy vulnerability in The Wikimedia Foundation Mediawiki - ApprovedRevs Extension allows Input Data Manipulation.This issue affects Mediawiki - ApprovedRevs Extension: 1.45, 1.44, 1.43, 1.39.

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://gerrit.wikimedia.org/r/q/Iee1bf1cbc8a519899e7f9dde508856bd4e5a5d2a	Patch
https://phabricator.wikimedia.org/T412068	Exploit Issue Tracking
https://phabricator.wikimedia.org/T412068	Exploit Issue Tracking

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:wikiworks:approved_revs:1.39:::::mediawiki::
	cpe:2.3:a:wikiworks:approved_revs:1.43:::::mediawiki::
	cpe:2.3:a:wikiworks:approved_revs:1.44:::::mediawiki::
	cpe:2.3:a:wikiworks:approved_revs:1.45:::::mediawiki::

History

No history.

Information

Published : 2026-01-09 00:15

Updated : 2026-02-12 17:50

NVD link : CVE-2026-22712

Mitre link : CVE-2026-22712

CVE.ORG link : CVE-2026-22712

JSON object : View

Products Affected

wikiworks

approved_revs

CWE

CWE-116

Improper Encoding or Escaping of Output

{"id": "CVE-2026-22712", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}], "cvssMetricV40": [{"type": "Secondary", "source": "c4f26cc8-17ff-4c99-b5e2-38fc1793eacc", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 2.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "LOW", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "PASSIVE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "NONE", "subIntegrityImpact": "LOW", "vulnIntegrityImpact": "LOW", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "LOW", "vulnAvailabilityImpact": "LOW", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2026-01-09T00:15:45.837", "references": [{"url": "https://gerrit.wikimedia.org/r/q/Iee1bf1cbc8a519899e7f9dde508856bd4e5a5d2a", "tags": ["Patch"], "source": "c4f26cc8-17ff-4c99-b5e2-38fc1793eacc"}, {"url": "https://phabricator.wikimedia.org/T412068", "tags": ["Exploit", "Issue Tracking"], "source": "c4f26cc8-17ff-4c99-b5e2-38fc1793eacc"}, {"url": "https://phabricator.wikimedia.org/T412068", "tags": ["Exploit", "Issue Tracking"], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "c4f26cc8-17ff-4c99-b5e2-38fc1793eacc", "description": [{"lang": "en", "value": "CWE-116"}]}], "descriptions": [{"lang": "en", "value": "Improper Encoding or Escaping of Output\u00a0due to magic word replacement in ParserAfterTidy vulnerability in The Wikimedia Foundation Mediawiki - ApprovedRevs Extension allows Input Data Manipulation.This issue affects Mediawiki - ApprovedRevs Extension: 1.45, 1.44, 1.43, 1.39."}, {"lang": "es", "value": "Codificaci\u00f3n o escape incorrectos de la salida debido al reemplazo de palabra m\u00e1gica en la vulnerabilidad ParserAfterTidy en la Extensi\u00f3n ApprovedRevs de Mediawiki de la Fundaci\u00f3n Wikimedia permite la manipulaci\u00f3n de datos de entrada. Este problema afecta a la Extensi\u00f3n ApprovedRevs de Mediawiki: 1.45, 1.44, 1.43, 1.39."}], "lastModified": "2026-02-12T17:50:28.073", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wikiworks:approved_revs:1.39:*:*:*:*:mediawiki:*:*", "vulnerable": true, "matchCriteriaId": "0680AAB5-C5C7-42A3-9CB3-D99E0126955B"}, {"criteria": "cpe:2.3:a:wikiworks:approved_revs:1.43:*:*:*:*:mediawiki:*:*", "vulnerable": true, "matchCriteriaId": "293B8B8B-6988-4E0A-AC72-B49D7C98C050"}, {"criteria": "cpe:2.3:a:wikiworks:approved_revs:1.44:*:*:*:*:mediawiki:*:*", "vulnerable": true, "matchCriteriaId": "30B9A0EC-4B7F-4B53-B073-B18291ECB4F6"}, {"criteria": "cpe:2.3:a:wikiworks:approved_revs:1.45:*:*:*:*:mediawiki:*:*", "vulnerable": true, "matchCriteriaId": "73ADBE38-7AFF-4A77-8294-5786ABC4C852"}], "operator": "OR"}]}], "sourceIdentifier": "c4f26cc8-17ff-4c99-b5e2-38fc1793eacc"}