VulnerableCode Package Details - pkg:composer/mediawiki/core@1.36.1

Search for packages

Vulnerability	Summary	Fixed by
VCID-jm7q-2w3j-buhh Aliases: CVE-2023-45363 GHSA-w5fx-cx7f-6vr9	MediaWiki Denial of Service vulnerability An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.	1.39.5 Affected by 0 other vulnerabilities. 1.40.1 Affected by 0 other vulnerabilities.
VCID-z9d9-aer5-gfa9 Aliases: CVE-2021-41800 GHSA-c8wv-qwwc-6j73	Multiple vulnerabilities have been found in MediaWiki, the worst of which could result in denial of service.	1.36.2 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-jm7q-2w3j-buhh
Aliases:
CVE-2023-45363
GHSA-w5fx-cx7f-6vr9

MediaWiki Denial of Service vulnerability An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.

1.39.5
Affected by 0 other vulnerabilities.

1.40.1
Affected by 0 other vulnerabilities.

VCID-z9d9-aer5-gfa9
Aliases:
CVE-2021-41800
GHSA-c8wv-qwwc-6j73

Multiple vulnerabilities have been found in MediaWiki, the worst of which could result in denial of service.

1.36.2
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T22:40:13.574070+00:00	GitLab Importer	Affected by	VCID-jm7q-2w3j-buhh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2023-45363.yml	38.4.0
2026-04-16T21:55:56.822038+00:00	GitLab Importer	Affected by	VCID-z9d9-aer5-gfa9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2021-41800.yml	38.4.0
2026-04-11T23:59:40.755116+00:00	GitLab Importer	Affected by	VCID-jm7q-2w3j-buhh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2023-45363.yml	38.3.0
2026-04-11T23:11:20.868425+00:00	GitLab Importer	Affected by	VCID-z9d9-aer5-gfa9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2021-41800.yml	38.3.0
2026-04-03T00:02:44.398500+00:00	GitLab Importer	Affected by	VCID-jm7q-2w3j-buhh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2023-45363.yml	38.1.0
2026-04-02T23:19:48.969600+00:00	GitLab Importer	Affected by	VCID-z9d9-aer5-gfa9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2021-41800.yml	38.1.0
2026-04-01T17:40:21.031364+00:00	GitLab Importer	Affected by	VCID-z9d9-aer5-gfa9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/mediawiki/core/CVE-2021-41800.yml	38.0.0