Description
MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file uploads, which allows remote authenticated users to have unspecified impact via multiple file uploads.
Remediation
References
Related Vulnerabilities
MySQL CVE-2020-14760 Vulnerability (CVE-2020-14760)
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-5687)
Ruby Out-of-bounds Write Vulnerability (CVE-2016-2338)
MySQL CVE-2023-22026 Vulnerability (CVE-2023-22026)
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9837)