https://bugzilla.wikimedia.org/show_bug.cgi?id=60271
--- Comment #8 from Chris Steipp <[email protected]> --- And this was released yesterday, https://www.otrs.com/security-advisory-2014-01-csrf-issue-customer-web-interface/ So we need to update to 3.2.14. I can't tell how critical the vulnerable features are, so I'm not sure how urgent the upgrade is. But seems like something we should try to do soon. -- You are receiving this mail because: You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
