Description
MediaWiki before 1.19.18, 1.20.x through 1.22.x before 1.22.9, and 1.23.x before 1.23.2 does not enforce an IFRAME protection mechanism for transcluded pages, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
Remediation
References
Related Vulnerabilities
WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (6.0.9)
Apache HTTP Server CVE-2012-0053 Vulnerability (CVE-2012-0053)
WordPress Plugin Simple Login Log Multiple Vulnerabilities (0.9.3)
WordPress Plugin WPGlobus-Multilingual Everything! Multiple Vulnerabilities (1.9.6)
WordPress Plugin Category Specific RSS feed Subscription Cross-Site Request Forgery (2.0)