Lucene search
K

7 matches found

Github Security Blog
Github Security Blog
added 2022/05/24 5:3 p.m.14 views

Possible to circumvent title-blacklist

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

6.1CVSS6.9AI score0.01564EPSS
Exploits1References7Affected Software1
NVD
NVD
added 2019/12/11 2:15 a.m.13 views

CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

6.1CVSS6.2AI score0.01564EPSS
Exploits1References4
OSV
OSV
added 2019/12/11 2:15 a.m.15 views

CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

6.1CVSS6.3AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2019/12/11 2:15 a.m.20 views

CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

6.1CVSS6.4AI score0.01564EPSS
Exploits1References3
Prion
Prion
added 2019/12/11 2:15 a.m.17 views

Design/Logic Flaw

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

5.8CVSS6.2AI score0.01564EPSS
Exploits1References4Affected Software2
Cvelist
Cvelist
added 2019/12/11 1:33 a.m.26 views

CVE-2019-19709

MediaWiki through 1.33.1 allows attackers to bypass the Titleblacklist protection mechanism by starting with an arbitrary title, establishing a non-resolvable redirect for the associated page, and using redirect=1 in the action API when editing that page...

6.1AI score0.01564EPSS
Exploits1References4
CVE
CVE
added 2019/12/11 1:33 a.m.118 views

CVE-2019-19709

CVE-2019-19709 affects MediaWiki up to version 1.33.1, where an attacker can bypass the Title_blacklist protection by starting from an arbitrary title, creating a non-resolvable redirect for the target page, and using redirect=1 in the action API during edit. The issue is demonstrated across mult...

6.1CVSS6.1AI score0.01564EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder