Description
MediaWiki through 1.32.1 has Incorrect Access Control (issue 1 of 3). A spammer can use Special:ChangeEmail to send out spam with no rate limiting or ability to block them. Fixed in 1.32.2, 1.31.2, 1.30.2 and 1.27.6.
Remediation
References
Related Vulnerabilities
MediaWiki Other Vulnerability (CVE-2005-1245)
WordPress Plugin WM Simple Captcha Security Bypass (2.0.3)
WordPress Plugin Users Ultra Membership Cross-Site Scripting (1.5.78)
WordPress Plugin SpiderCatalog Unspecified Vulnerability (1.6.8)
WordPress Plugin Persian Woocommerce SMS Cross-Site Scripting (3.3.2)