CVE-2010-2789
PHP remote file inclusion vulnerability in MediaWikiParserTest.php in MediaWiki 1.16 beta, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via unspecified vectors.
Date published : 2011-04-26
http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-July/000092.html