CVE-2015-8003
EPSS 0.52%
Description
MediaWiki before 1.23.11, 1.24.x before 1.24.4, and 1.25.x before 1.25.3 does not throttle file uploads, which allows remote authenticated users to have unspecified impact via multiple file uploads.
How to fix CVE-2015-8003
To remediate CVE-2015-8003, upgrade the affected package to a fixed version below.
- Debian/mediawiki—upgrade to 1:1.25.5-1 or later
Is CVE-2015-8003 being exploited?
Low — EPSS is 0.5%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1:1.25.5-1