VYPR

Wikibase

by Wikimedia Foundation

Source repositories

CVEs (2)

  • CVE-2022-34750HigJun 28, 2022
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in MediaWiki through 1.38.1. The lemma length of a Wikibase lexeme is currently capped at a thousand characters. Unfortunately, this length is not validated, allowing much larger lexemes to be created, which introduces various denial-of-service attack…

  • CVE-2019-19328MedNov 27, 2019
    risk 0.40cvss 6.1epss 0.01

    ui/editor/tooltip/Rdf.js in Wikibase Wikidata Query Service GUI before 0.3.6-SNAPSHOT 2019-11-07 allows HTML injection in tooltips for entities. NOTE: this GUI code is no longer bundled with the Wikibase Wikidata Query Service snapshots, such as 0.3.6-SNAPSHOT.