Description
An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a Language Name Search.
Remediation
References
Related Vulnerabilities
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4)
WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (6.1.5)
WordPress Plugin Search Types Custom Fields Widget Unspecified Vulnerability (1.3)
WordPress Plugin Virtual Robots.txt Cross-Site Scripting (1.9)