Lucene search
PRIOn knowledge basePRION:CVE-2019-19709HistoryDec 11, 2019 - 2:15 a.m.
Design/Logic Flaw
2019-12-1102:15:00
PRIOn knowledge base
www.prio-n.com
2
MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 9.0 | |
| debian_linux | eq | 10.0 | |
| mediawiki | le | 1.33.1 |
Related
openvas
openvas
Debian: Security Advisory (DSA-4592-1)
2019-12-29 00:00:00
Mageia: Security Advisory (MGASA-2020-0021)
2022-01-28 00:00:00
cvelist
cvelist
CVE-2019-19709
2019-12-11 01:33:11
nvd
nvd
CVE-2019-19709
2019-12-11 02:15:14
ubuntucve
ubuntucve
CVE-2019-19709
2019-12-11 00:00:00
veracode
veracode
Authorization Bypass
2019-12-11 07:32:06
osv
osv
CVE-2019-19709
2019-12-11 02:15:14
mediawiki - security update
2019-12-26 00:00:00
cve
cve
CVE-2019-19709
2019-12-11 02:15:14
friendsofphp
friendsofphp
Possible to circumvent title-blacklist
2019-12-05 16:02:47
nessus
nessus
Debian DSA-4592-1 : mediawiki - security update
2019-12-30 00:00:00
debiancve
debiancve
CVE-2019-19709
2019-12-11 02:15:14
debian
debian
[SECURITY] [DSA 4592-1] mediawiki security update
2019-12-27 12:33:14
[SECURITY] [DSA 4592-1] mediawiki security update
2019-12-27 12:33:14
mageia
mageia
Updated mediawiki packages fix security vulnerability
2020-01-05 18:37:51
altlinux
altlinux
Security fix for the ALT Linux 9 package mediawiki version 1.34.0-alt1
2019-12-22 00:00:00
github
github
Possible to circumvent title-blacklist
2022-05-24 17:03:17