VDB

GCVE-110-MAGEIA-2022-145

GCVE-110-MAGEIA-2022-145
Advisory Published
Vulnetix · Advisory published April 18, 2022
Title::newMainPage() goes into an infinite recursion loop if it points to a local interwiki (CVE-2022-28201). Messages widthheight/widthheightpage/nbytes not escaped when used in galleries or Special:RevisionDelete (CVE-2022-28202). Requesting Special:NewFiles on a wiki with many file uploads with actor as a condition can result in a DoS (CVE-2022-28203). Special:WhatLinksHere can result in a DoS when a page is used on a extremely large number of other pages (CVE-2022-28204).

Affected Products

VendorProductVersionsPlatforms
Mageiamediawiki0 (affected), 1.35.6-1.mga8 (unaffected), 1.35.6-1.mga8 (unaffected), 0 (affected)
Mageiafail2ban0 (affected), 1.0.2-1.mga8 (unaffected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›