CVE-2013-4304
The CVE-2013-4304 issue affects MediaWiki with the CentralAuth extension, where CentraAuthUser is cached in centralauth_User even if the user has not logged in, allowing remote authentication bypass. Affected versions are MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.2...