Last modified: 2006-04-28 23:18:59 UTC
It is trivially easy to circumvent the spam blacklist by using an HTML comment in the URL. Example: http://en.wikipedia.org/w/index.php?title=Wikipedia/Stable&diff=42542934&oldid=38860953 (Kapitalism.net is on the spam blacklist).
*** This bug has been marked as a duplicate of 4823 ***
De-duping this. These extensions don't share code and work differently, so have to both be fixed separately.
Fixed in trunk, r13601.
Example: http://en.wikipedia.org/w/index.php?title=Talk:Wikitruth&diff=50327924&oldid=50318100 http:///www.foo.org (notice the three slashes) is also an effective work around.
Second exploit should now be fixed in trunk, r13912.