{"vulnerability": "CVE-2020-25827", "sightings": [{"uuid": "050884cb-c66f-4d41-b8ec-76850bae623a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-25827", "type": "seen", "source": "https://t.me/cibsecurity/14909", "content": "\u203c CVE-2020-25827 \u203c\n\nAn issue was discovered in the OATHAuth extension in MediaWiki before 1.31.10 and 1.32.x through 1.34.x before 1.34.4. For Wikis using OATHAuth on a farm/cluster (such as via CentralAuth), rate limiting of OATH tokens is only done on a single site level. Thus, multiple requests can be made across many wikis/sites concurrently.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-09-28T00:48:52.000000Z"}]}