Description
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a Language Name Search.
Remediation
References
Related Vulnerabilities
Drupal Session Fixation Vulnerability (CVE-2008-3222)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-3416)
TYPO3 URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2010-3669)
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-6926)
Python Missing Initialization of Resource Vulnerability (CVE-2018-14647)