The remote web server is hosting a release of DokuWiki earlier than DokuWiki 2009-12-25. Such versions are potentially affected by multiple vulnerabilities :
A security-bypass vulnerability that can be exploited through the ‘cmd[save]’, ‘cmd[del]’, and ‘cmd[update]’ parameters of the ‘lib/plugins/acl/ajax.php’ script.
An information-disclosure vulnerability in the ‘ns’ parameter of the ‘ajax.php’ script.
Binary data 5302.prm