MediaWiki Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability - CVE-2021-36125

An issue was discovered in the CentralAuth extension in MediaWiki through 1.36. The Special:GlobalRenameRequest page is vulnerable to infinite loops and denial of service attacks when a user39s current username is beyond an arbitrary maximum configuration value (MaxNameChars).