MediaWiki Other Vulnerability - CVE-2012-5391

Session fixation vulnerability in Special:UserLogin in MediaWiki before 1.18.6 1.19.x before 1.19.3 and 1.20.x before 1.20.1 allows remote attackers to hijack web sessions via the session_id.