CVE-2010-2789 Information

Description

PHP remote file inclusion vulnerability in MediaWikiParserTest.php in MediaWiki 1.16 beta when register_globals is enabled allows remote attackers to execute arbitrary PHP code via unspecified vectors.

Reference

http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-July/000092.html http://openwall.com/lists/oss-security/2010/07/29/4