Author: bugzilla.wikimedia.org
Description:
Performing a search for any term with a dot/period in the query results in an error.
For example
http://en.m.wikipedia.org/wiki?search=Data.gov
Results in
"Forbidden
You don't have permission to access /wiki on this server.
Apache/2.2.14 (Ubuntu) Server at en.m.wikipedia.org Port 80"
This happens across all instances of Mobile Wikipedia that I could find.
I believe this is caused by a misconfiguration in .htaccess .
Version: .5
Severity: major
Sounds like the work around for the xss issue in IE6. (Based on what was said at bug 28235 Comment 9 ). Anyways cc'ing Tim to this bug since it looks to be caused by the fix for the other bug.
That's precisely the kind of URL that we can't allow. Add another parameter to the end of the query string, or use POST.
bugzilla.wikimedia.org wrote:
Using the search box on en.m.wikipedia.org produces the same error.
Doing a search for whitehouse.org returns
http://en.m.wikipedia.org/wiki?search=whitehouse.org
Which currently gives a 403
Adding an extra query does indeed fix the problem
http://en.m.wikipedia.org/wiki?search=whitehouse.org&source=
or
http://en.m.wikipedia.org/wiki?search=whitehouse.org&source=foo
both work.
Is it possible to alter the mobile wikipedia search to add a source parameter?
preilly wrote:
This issue is fixed in the new Mobile Frontend extension. This will be resolved once the new extension is pushed live to production.