Brion,
How serious is the risk for a local Intranet? From my understanding the vulnerabilities are cross site scripting vulnerabilities, is this correct?
What kind of hazard am I running by waiting to upgrade?
-- Chris
On 6/15/05, Brion Vibber brion@pobox.com wrote:
Karl-Otto Kirst wrote:
We have the same problem in ZUM-Wiki (www.zum.de/wiki). We miss the "Mail to user" link, since we upgraded from MediaWiki version 1.3.6 to 1.4.0. So it seems to be a "problem" or a different configuration of version 1.4.0.
*Upgrade to 1.4.5 immediately!* You are vulnerable to several security vulnerabilities.
-- brion vibber (brion @ pobox.com)
MediaWiki-l mailing list MediaWiki-l@Wikimedia.org http://mail.wikipedia.org/mailman/listinfo/mediawiki-l