CVE-2025-53371 | miraheze DiscordNotifications on MediaWiki HTTP POST Request file_get_contents wgDiscordIncomingWebhookUrl resource consumption (EUVD-2025-21013)

A vulnerability, which was classified as problematic, was found in miraheze DiscordNotifications on MediaWiki. Affected is the function file_get_contents of the component HTTP POST Request Handler. The manipulation of the argument wgDiscordIncomingWebhookUrl leads to resource consumption.

This vulnerability is traded as CVE-2025-53371. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More