All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-58521
MEDIUMpublished 2026-07-01 18:16 UTC · 3 days ago · modified 2026-07-01 19:16 UTC
6.9
CVSS / 10
// description
Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from * before 1.43.9,1.44.6,1.45.4.
// weaknesses (CWE)
- CWE-89