Vulnerability Details CVE-2026-0817
Missing Authorization vulnerability in Wikimedia Foundation MediaWiki - CampaignEvents extension allows Privilege Abuse.This issue affects MediaWiki - CampaignEvents extension: 1.45, 1.44, 1.43, 1.39.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.0%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2026-0817
-
cpe:2.3:a:wikimedia:campaignevents:1.39
-
cpe:2.3:a:wikimedia:campaignevents:1.43
-
cpe:2.3:a:wikimedia:campaignevents:1.44
-
cpe:2.3:a:wikimedia:campaignevents:1.45