CVE-2010-2789
MediaWiki 1.16 beta - Remote Code Execution via PHP Remote File Inclusion
Title source: llmDescription
PHP remote file inclusion vulnerability in MediaWikiParserTest.php in MediaWiki 1.16 beta, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via unspecified vectors.
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2010/07/29/4
Patch, Vendor Advisory mailing-list
x_refsource_mlist
http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-July/000092.html
Scores
EPSS
0.0053
EPSS Percentile
67.6%
Details
CWE
CWE-94
Status
published
Products (1)
mediawiki/mediawiki
1.16 beta1
Published
Apr 27, 2011
Tracked Since
Feb 18, 2026