(Sep 22) Multiple security vulnerabilities have been discovered in MediaWiki, a website engine for collaborative work, which result in incorrectly configured rate limits, information disclosure in Special:Redirect/logid and bypass of an account lock.
Comment
(Sep 22) Security fix for CVE-2018-16435
(Sep 22) 3.6.9
(Sep 22) It was discovered that Archive::Zip, a perl module for manipulation of ZIP archives, is prone to a directory traversal vulnerability. An attacker able to provide a specially crafted archive for processing can take advantage of this flaw to overwrite arbitrary files during archive
(Sep 18) Several security issues were fixed in PHP.