[Wikipedia-l] Fwd: Security hole in "What_we_use_the_money_for" on meta.wikimedia.org -- ???

Daniel Mayer maveric149 at yahoo.com
Mon Aug 2 18:47:23 UTC 2004

I just got this email from a reader (I've already explained that we are a wiki
and he did not do any harm):

|I noticed an "edit" tab.  I clicked on this at got an edit form that
|seems to have allowed me to edit this text, for real, right on your site!
|I've taken a look in a couple different browsers and even a different CPU
|and it seems to be there consistently -- despite clearing cache and
|cookies.   (my "here's MM's edit") at the end of the body text.
|Is this for real?  Did I make a permanent modification on your public page?
|If so, isn't that a big security hole?  If not, it's very confusing to me
|what I did and why I was able to do it.

Do you Yahoo!?
Yahoo! Mail - 50x more storage than other providers!

More information about the Wikipedia-l mailing list