Low severity3.5NVD Advisory· Published Jan 14, 2025· Updated Apr 15, 2026

CVE-2025-23073

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Mediawiki - GlobalBlocking Extension allows Retrieve Embedded Sensitive Data.

This issue briefly impacted the master branch of MediaWiki’s GlobalBlocking Extension.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

gerrit.wikimedia.org/r/q/I2a2d32aedf6328be0a9f1b4e04a6567a25f19486nvd
phabricator.wikimedia.org/T377855nvd

News mentions

No linked articles in our index yet.

cvss	0.227
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000