COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2026-14363

CVE-2026-14363

Severity
critical
Source
NVD · cve
Published
2026-07-01
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2026-14363
shame 35/100

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from * before 1.43.9,1.44.6,1.45.4.

Players implicated

mediawiki · vendorcargo · productmediawiki · product

Description

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in The Wikimedia Foundation Mediawiki - Cargo Extension allows SQL Injection. This issue affects Mediawiki - Cargo Extension: from * before 1.43.9,1.44.6,1.45.4.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.