CVE-2013-1951

A cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.5 and 1.20.x before 1.20.4 and allows remote attackers to inject arbitrary web script or HTML via Lua function names.

Date published : 2019-10-31

https://phabricator.wikimedia.org/T48084

http://lists.fedoraproject.org/pipermail/package-announce/2013-April/104022.html