CVE-2013-6453 Information

Description

MediaWiki before 1.19.10 1.2x before 1.21.4 and 1.22.x before 1.22.1 does not properly sanitize SVG files which allows remote attackers to have unspecified impact via invalid XML.

Reference

http://lists.wikimedia.org/pipermail/mediawiki-announce/2014-January/000138.html