CVE-2026-0668

Description

Inefficient Regular Expression Complexity vulnerability in Wikimedia Foundation MediaWiki - VisualData Extension allows Regular Expression Exponential Blowup.This issue affects MediaWiki - VisualData Extension: 1.45.

PUBLISHED Reserved 2026-01-07 | Published 2026-01-07 | Updated 2026-01-07 | Assigner wikimedia-foundation

Problem types

CWE-1333 Inefficient Regular Expression Complexity

Product status

Credits

Radman Siddiki finder

References

phabricator.wikimedia.org/T387008

gerrit.wikimedia.org/...9a8ceb2c9a22a635cfc27964353f14072dbf

gerrit.wikimedia.org/...c2ade621226e14fe852f3217293772bf8bb8

gerrit.wikimedia.org/...9fca694a2613e29e149dea2d76d7f06063e5

gerrit.wikimedia.org/...737c9f0ba805267d1fc8296e7cff61241ee3

cve.org (CVE-2026-0668)

nvd.nist.gov (CVE-2026-0668)

Download JSON