A vulnerability has been reported in the CentralAuth extension for MediaWiki, which can be exploited by malicious people to bypass certain security restrictions.
MediaWiki CentralAuth Extension
A vulnerability has been reported in the CentralAuth extension for MediaWik
Secunia Advisory SA54723
The vulnerability is caused due to an error when handling auto-logins and can be exploited to bypass the authentication mechanism by providing a valid username within the "centralauth_User" cookie.
Update to a fixed version.