VYPR
Medium severity5.3NVD Advisory· Published Sep 26, 2019· Updated Jun 17, 2026

CVE-2019-16738

CVE-2019-16738

Description

In MediaWiki through 1.33.0, Special:Redirect allows information disclosure of suppressed usernames via a User ID Lookup.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
mediawiki/corePackagist
>= 1.31.0, < 1.31.41.31.4
mediawiki/corePackagist
>= 1.32.0, < 1.32.41.32.4
mediawiki/corePackagist
>= 1.33.0, < 1.33.11.33.1

Affected products

6
  • cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*
    Range: >=1.31.0,<1.31.4
  • Debian/linux2 versions
    cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  • ghsa-coords
    Range: >= 1.31.0, < 1.31.4

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.