Description

MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file uploads, which allows remote authenticated users to have unspecified impact via multiple file uploads.

Remediation

References

CVE-2015-8003

Related Vulnerabilities

WordPress Plugin Save Contact Form 7 Information Disclosure (2.0)

Oracle Database Server CVE-2008-0342 Vulnerability (CVE-2008-0342)

MediaWiki Improper Input Validation Vulnerability (CVE-2017-0368)

Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-5500)

Java Unspesificed Vulnerability (CVE-2018-3136)

Severity

Medium

Classification

CVE-2015-8003

Tags

Missing Update Known Vulnerabilities