CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mediawiki: >> Mediawiki >> 1.32.2 Security Vulnerabilities

CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page.

CVSS Score

6.1

EPSS Score

0.003

Published

2019-12-11

CVE-2019-16738

In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.

CVSS Score

5.3

EPSS Score

0.004

Published

2019-09-26

Page 18

Vulnerabilities

Vulnerable Software

Mediawiki: >> Mediawiki >> 1.32.2 Security Vulnerabilities

Products

Pricing

Contact Us