Miggo Logo
Book a Demo
Miggo Vulnerability Database
CVE-2021-41800

CVE-2021-41800:
MediaWiki allows a denial of service

5.3

CVSS Score

Basic Information

CVE ID
CVE-2021-41800
GHSA ID
GHSA-c8wv-qwwc-6j73
EPSS Score
-
CWE
CWE-770
Published
5/24/2022
Updated
2/1/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Package NameEcosystemVulnerable VersionsFirst Patched Version
mediawiki/corecomposer< 1.36.21.36.2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from improper PoolCounter integration in Special:Contributions handling. The commit diff shows the fix moved the 'nocontribs' check and query execution logic INSIDE the PoolCounterWorkViaCallback's doWork closure. This indicates the original code executed these operations without proper PoolCounter protection, allowing uncontrolled resource consumption when processing expensive SQL queries for user contributions. The execute() method's structure prior to the patch failed to properly limit concurrent long-running queries through PoolCounter mechanisms.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

M**i*Wiki ***or* *.**.* *llows * **ni*l o* s*rvi** (r*sour** *onsumption ****us* o* l*n*t*y qu*ry pro**ssin* tim*). Visitin* Sp**i*l:*ontri*utions **n som*tim*s r*sult in * lon* runnin* SQL qu*ry ****us* Pool*ount*r prot**tion is mis**n*l**.

Reasoning

T** vuln*r**ility st*ms *rom improp*r Pool*ount*r int**r*tion in Sp**i*l:*ontri*utions **n*lin*. T** *ommit *i** s*ows t** *ix mov** t** 'no*ontri*s' ****k *n* qu*ry *x**ution lo*i* INSI** t** Pool*ount*rWorkVi***ll***k's *oWork *losur*. T*is in*i**t