All releases of MediaWiki
Release Notes: A cross-site scripting (XSS) vulnerability was fixed. Fatal errors with unusual file repository configurations, such as ForeignAPIRepo were fixed. The "change password" link on Special:Preferences was changed to have the correct returnto parameter.
Release Notes: XSS and CSRF vulnerabilities were fixed.
Release Notes: An XSS vulnerability has been fixed.
Release Notes: 59,000 new localised text messages have been added, taking the total to 266,000, spread across 281 languages. New special pages: FileDuplicateSearch and ListGroupRights. Special:UserRights and Special:SpecialPages have been redesigned. You can hide categories with __HIDDENCAT__. Image redirects are now enabled by default. Search results show image thumbnails. The search box in the MonoBook sidebar can be moved up by editing [[MediaWiki:Sidebar]]. Double redirects created by a page move can be fixed automatically. There are many other changes.
Release Notes: The parser was rewritten for better Wikipedia template compatibility in default installations. Fixes were made for PostgreSQL compatibility. MySQL wildcard search enhancements were made. Many bugs were fixed.
Release Notes: Possible cross-site information leaks using the callback parameter for JSON-formatted results in the API are prevented by dropping user credentials.
Release Notes: This release fixes a potential XSS issue affecting api.php on Microsoft Internet Explorer only.
Release Notes: This is a bugfix update to the Spring 2007 quarterly release snapshot. A number of fixes to improve compatibility with PostgreSQL, some versions of MySQL, and some PHP configurations are included.
Release Notes: Improved PostgreSQL and IPv6 support. New access control features: cascading protection, a list of protected pages, and new limited namespace-wide access control. Better error handling in the new image resizing backend. Numerous other bugfixes and enhancements.
Release Notes: An XSS injection vulnerability based on Microsoft Internet Explorer's UTF-7 charset autodetection was located in the AJAX support module, affecting MSIE users on MediaWiki 1.6.x and up when the optional setting $wgUseAjax is enabled. Minor compatibility fixes for IIS and PostgreSQL are also included.
