Wikimedia Security Team/Check/iSEC Assessment 2014

During December 2014, iSEC Partners performed an audit of MediaWiki and some WMF infrastructure, in an assessment sponsored by the Open Technology Fund.

Full report: https://github.com/iSECPartners/publications/raw/master/reports/iSEC_Wikimedia.pdf

Summary of issues and remediation