CVE-2026-8857
UnknownCVSS 0.0Exploitation Probability (EPSS)
Low risk18th percentile — higher than 18% of all known CVEs
Summary
A vulnerability in the Wikimedia Foundation Timeline extension affects files scripts/EasyTimeline.Pl and includes/Timeline.Php. The issue impacts versions before 1.46.0, 1.45.4, 1.44.6, and 1.43.9.
Risk Assessment
An attacker could exploit this vulnerability to compromise system integrity or availability, potentially leading to unauthorized actions on the server.
Recommendation
Immediately update the Timeline extension to version 1.46.0, 1.45.4, 1.44.6, or 1.43.9 depending on the branch used.
Original NVD description (English source)
A vulnerability in Wikimedia Foundation timeline. This vulnerability is associated with program files scripts/EasyTimeline.Pl, includes/Timeline.Php. This issue affects timeline: from * before 1.46.0, 1.45.4, 1.44.6, 1.43.9.

