Critical severityNVD Advisory· Published Oct 21, 2025· Updated Apr 15, 2026
CVE-2025-12004
CVE-2025-12004
Description
Incorrect Permission Assignment for Critical Resource vulnerability in The Wikimedia Foundation Mediawiki - Lockdown Extension allows Privilege Abuse. Fixed in Mediawiki Core Action APIThis issue affects Mediawiki - Lockdown Extension: from master before 1.42.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<1.42+ 1 more
- (no CPE)range: <1.42
- (no CPE)range: <1.42
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.