Vulnerability Details CVE-2026-0669
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wikimedia Foundation MediaWiki - CSS extension allows Path Traversal.This issue affects MediaWiki - CSS extension: 1.44, 1.43, 1.39.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.4%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2026-0669
-
cpe:2.3:a:css_project:css:-
-
cpe:2.3:a:mediawiki:mediawiki:1.39.0
-
cpe:2.3:a:mediawiki:mediawiki:1.43.0
-
cpe:2.3:a:mediawiki:mediawiki:1.44.0