CVE-2025-61766 – Bucket vulnerable to infinite recursion when querying a bucket using the != operator

CVE ID : CVE-2025-61766

Published : Oct. 6, 2025, 4:07 p.m. | 26 minutes ago

Description : Bucket is a MediaWiki extension to store and retrieve structured data on articles. Prior to version 1.0.0, infinite recursion can occur if a user queries a bucket using the `!=` comparator. This will result in PHP’s call stack limit exceeding, and/or increased memory consumption, potentially leading to a denial of service. Version 1.0.0 contains a patch for the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…