FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mediawiki -- multiple vulnerabilities

Affected packages
mediawiki < 1.16.5

Details

VuXML ID 3fadb7c6-7b0a-11e0-89b4-001ec9578670
Discovery 2011-04-14
Entry 2011-05-12

Mediawiki reports:

(Bug 28534) XSS vulnerability for IE 6 clients. This is the third attempt at fixing bug 28235.

(Bug 28639) Potential privilege escalation when $wgBlockDisablesLogin is enabled.

References

URL http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-May/000098.html
URL http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_16_5/phase3/RELEASE-NOTES
URL https://bugzilla.wikimedia.org/show_bug.cgi?id=28534
URL https://bugzilla.wikimedia.org/show_bug.cgi?id=28639