MediaWiki URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2019-19709 - Vulnerability Database

MediaWiki URL Redirection to Untrusted Site (Open Redirect) Vulnerability - CVE-2019-19709

Medium

Reference: CVE-2019-19709

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-19709

Title: MediaWiki URL Redirection to Untrusted Site (Open Redirect) Vulnerability

Overview:

MediaWiki through 1.33.1 allows attackers to bypass the Title_blacklist protection mechanism by starting with an arbitrary title establishing a non-resolvable redirect for the associated page and using redirect1 in the action API when editing that page.