CVE-2021-41800
Allocation of Resources Without Limits or Throttling in packagist/mediawiki/core
Identifiers
GHSA-c8wv-qwwc-6j73, CVE-2021-41800
Package Slug
packagist/mediawiki/core
Vulnerability
Allocation of Resources Without Limits or Throttling
Description
MediaWiki before 1.36.2 allows a denial of service (resource consumption because of lengthy query processing time). Visiting Special:Contributions can sometimes result in a long running SQL query because PoolCounter protection is mishandled.
Affected Versions
All versions before 1.36.2
Solution
Upgrade to version 1.36.2 or above.
Last Modified
2024-02-02
| source |