Stran

**Name of the Vulnerable Software and Affected Versions** MediaWiki - ReportIncident Extension versions 1.43.7, 1.44.4, and 1.45.2 **Description** The ReportIncident Extension in MediaWiki is susceptible to HTTP Denial of Service (DoS) attacks due to unrestricted resource allocation and a lack of throttling. This allows an attacker to exhaust server resources by sending a large number of HTTP requests. **Recommendations** Update to a newer version of the ReportIncident Extension that addresses this resource allocation issue. Update to a newer version of MediaWiki that addresses this resource allocation issue.