Lucene search

K

RedhatCVELIST:CVE-2010-0288

HistoryFeb 15, 2010 - 6:00 p.m.

CVE-2010-0288

2010-02-1518:00:00

redhat

www.cve.org

3

AI Score

6.5

Confidence

Low

EPSS

0.015

Percentile

86.9%

A typo in the administrator permission check in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to gain privileges and access closed wikis by editing current ACL statements, as demonstrated in the wild in January 2010.

References

bugs.splitbrain.org/index.php?do=details&task_id=1847

lists.fedoraproject.org/pipermail/package-announce/2010-February/034729.html

lists.fedoraproject.org/pipermail/package-announce/2010-February/034831.html

osvdb.org/61710

secunia.com/advisories/38183

security.gentoo.org/glsa/glsa-201301-07.xml

www.debian.org/security/2010/dsa-1976

www.exploit-db.com/exploits/11141

www.securityfocus.com/bid/37820

www.splitbrain.org/blog/2010-01/17-dokuwiki-security

www.vupen.com/english/advisories/2010/0150

exchange.xforce.ibmcloud.com/vulnerabilities/55661

AI Score

6.5

Confidence

Low

EPSS

0.015

Percentile

86.9%

Related for CVELIST:CVE-2010-0288

debiancve1 prion1 nessus6 cve1 ubuntucve1 nvd1 exploitdb1 openvas8 freebsd1 securityvulns2 debian3 osv1 gentoo1