CVE-2025-62696

N/A Unknown

Published: October 21, 2025 Modified: October 21, 2025

Description

Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in The Wikimedia Foundation Mediawiki Foundation - Springboard Extension allows Command Injection.This issue affects Mediawiki Foundation - Springboard Extension: master.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Springboard/+/1174003

Source: c4f26cc8-17ff-4c99-b5e2-38fc1793eacc

https://phabricator.wikimedia.org/T400422

Source: c4f26cc8-17ff-4c99-b5e2-38fc1793eacc

https://phabricator.wikimedia.org/T400422

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

3 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.7%

82th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-77

Related CVEs

CVE-2026-0824 3.5

CVE-2026-0822 6.3

CVE-2025-13393 4.3

CVE-2025-12379 6.4

CVE-2026-0821 7.3