{"id": "DEBIAN_DLA-1269.NASL", "bulletinFamily": "scanner", "title": "Debian DLA-1269-1 : dokuwiki security update", "description": "It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.", "published": "2018-02-05T00:00:00", "modified": "2018-07-09T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "reporter": "Tenable", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "cvelist": ["CVE-2017-18123"], "type": "nessus", "lastseen": "2019-01-16T20:32:24", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "a795e0e6d67ac8d2175c2e9dd99419981acec2abc0ea007789cbe9f070dfaf57", "hashmap": [{"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "ab24a74fb414e0bcb8615a367d30edf0", "key": "sourceData"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "9d4ec3bc274414c5dfdd7488d4d95f7b", "key": "modified"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-07-07T02:11:24", "modified": "2018-07-06T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.4\");\n script_cvs_date(\"Date: 2018/07/06 11:26:07\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 4}, "differentElements": ["modified", "sourceData"], "edition": 4, "lastseen": "2018-07-07T02:11:24"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "1fe3e31bc94ad2501edb8bd4c2ac71d4c8056f047b5dd4a7654a190086ab25c0", "hashmap": [{"hash": "48d60a46ed3f845ea90484e4bf421124", "key": "modified"}, {"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "eae115b3b3b7d7166a4fad047a270f69", "key": "sourceData"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-08-30T19:52:36", "modified": "2018-07-09T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2018/07/09 12:26:58\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 7}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2018-08-30T19:52:36"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "b2b3cf3110f66b299fa1bfe32c8fdeefed691a17fbaac8b375346d984b5ce9fb", "hashmap": [{"hash": "48d60a46ed3f845ea90484e4bf421124", "key": "modified"}, {"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "eae115b3b3b7d7166a4fad047a270f69", "key": "sourceData"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-09-02T00:01:46", "modified": "2018-07-09T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2018/07/09 12:26:58\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 8}, "differentElements": ["description"], "edition": 7, "lastseen": "2018-09-02T00:01:46"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "223c88abec7f7abadfa82b9c80ed23de4d20a0a4e2586bd73daf652e67e712ac", "hashmap": [{"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "b3d457a212622f4da23227c611360f66", "key": "sourceData"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "76e8782b29cfd39782ffd31ec97c3583", "key": "modified"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-03-20T03:26:11", "modified": "2018-03-19T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.3\");\n script_cvs_date(\"Date: 2018/03/19 16:26:30\");\n\n script_cve_id(\"CVE-2017-18123\");\n script_osvdb_id(159934);\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:ND\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 4}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2018-03-20T03:26:11"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "enchantments": {"score": {"modified": "2018-02-05T23:09:14", "value": 10.0}}, "hash": "0f10af097fe403175a4889a43c92be8ac215fae4d1324b609290fb248ade1458", "hashmap": [{"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "modified"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "ae03d6a0b4e910bddc2024895af0c5ab", "key": "sourceData"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-02-05T23:09:14", "modified": "2018-02-05T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"$Revision: 3.1 $\");\n script_cvs_date(\"$Date: 2018/02/05 14:47:53 $\");\n\n script_cve_id(\"CVE-2017-18123\");\n script_osvdb_id(159934);\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss", "modified", "sourceData"], "edition": 1, "lastseen": "2018-02-05T23:09:14"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {"score": null}, "hash": "c35791e73860facd1936e700b811c1c12f946c3eb3deda5f6530b4259438bedd", "hashmap": [{"hash": "7e12daa7018fb7e735f386c93968adef", "key": "modified"}, {"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "d167786e606e6702b9256e4679e2c648", "key": "sourceData"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-03-15T15:16:19", "modified": "2018-03-14T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.2\");\n script_cvs_date(\"Date: 2018/03/14 12:59:00\");\n\n script_cve_id(\"CVE-2017-18123\");\n script_osvdb_id(159934);\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:ND\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2018-03-15T15:16:19"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"], "cvelist": ["CVE-2017-18123"], "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "It was discovered that an XHR/AJAX call did not properly encode user input in the 'dokuwiki' wiki platform. This resulted in a reflected file download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version 0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "b2b3cf3110f66b299fa1bfe32c8fdeefed691a17fbaac8b375346d984b5ce9fb", "hashmap": [{"hash": "48d60a46ed3f845ea90484e4bf421124", "key": "modified"}, {"hash": "fcbba4690d1b5f7c1502d267d879423a", "key": "cpe"}, {"hash": "2076413bdcb42307d016f5286cbae795", "key": "cvss"}, {"hash": "27d06b1e0a4565f569cfb0ef9452d0d5", "key": "references"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "4244ba0f49344b76bab7a0cd9a9ff134", "key": "description"}, {"hash": "eae115b3b3b7d7166a4fad047a270f69", "key": "sourceData"}, {"hash": "39365fccda56293d73ba331ac7fed1d2", "key": "title"}, {"hash": "78607624593cb9bb9e567009bcb42370", "key": "pluginID"}, {"hash": "e14073e66f77d01d6d55db943fc6c1ca", "key": "cvelist"}, {"hash": "eaa4ed87336e2e51d149ce6e262dadbe", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "dc586a1e6747b90f55edbf01b5b7a197", "key": "href"}, {"hash": "74562d71b087df9eabd0c21f99b132cc", "key": "naslFamily"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=106592", "id": "DEBIAN_DLA-1269.NASL", "lastseen": "2018-07-10T06:08:47", "modified": "2018-07-09T00:00:00", "naslFamily": "Debian Local Security Checks", "objectVersion": "1.3", "pluginID": "106592", "published": "2018-02-05T00:00:00", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://packages.debian.org/source/wheezy/dokuwiki"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2018/07/09 12:26:58\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Debian DLA-1269-1 : dokuwiki security update", "type": "nessus", "viewCount": 7}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2018-07-10T06:08:47"}], "edition": 8, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "fcbba4690d1b5f7c1502d267d879423a"}, {"key": "cvelist", "hash": "e14073e66f77d01d6d55db943fc6c1ca"}, {"key": "cvss", "hash": "2076413bdcb42307d016f5286cbae795"}, {"key": "description", "hash": "32a25b50710bb8fd9c95a5d5a5a16ab9"}, {"key": "href", "hash": "dc586a1e6747b90f55edbf01b5b7a197"}, {"key": "modified", "hash": "48d60a46ed3f845ea90484e4bf421124"}, {"key": "naslFamily", "hash": "74562d71b087df9eabd0c21f99b132cc"}, {"key": "pluginID", "hash": "78607624593cb9bb9e567009bcb42370"}, {"key": "published", "hash": "eaa4ed87336e2e51d149ce6e262dadbe"}, {"key": "references", "hash": "27d06b1e0a4565f569cfb0ef9452d0d5"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "eae115b3b3b7d7166a4fad047a270f69"}, {"key": "title", "hash": "39365fccda56293d73ba331ac7fed1d2"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "4a83d3fd17978d4076752d4653af3a69b2098c0668519b39602ec413027e0f02", "viewCount": 8, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1269-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106592);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2018/07/09 12:26:58\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1269-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected\nfile download vulnerability.\n\nFor Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"dokuwiki\", reference:\"0.0.20120125b-2+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Debian Local Security Checks", "pluginID": "106592", "cpe": ["p-cpe:/a:debian:debian_linux:dokuwiki", "cpe:/o:debian:debian_linux:7.0"]}

{"cve": [{"lastseen": "2018-07-09T03:15:43", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html", "https://github.com/splitbrain/dokuwiki/issues/2029", "https://hackerone.com/reports/238316", "https://vulnhive.com/2018/000004", "https://github.com/splitbrain/dokuwiki/pull/2019", "https://github.com/splitbrain/dokuwiki/commit/238b8e878ad48f370903465192b57c2072f65d86", "https://lists.debian.org/debian-lts-announce/2018/07/msg00004.html"], "description": "The call parameter of /lib/exe/ajax.php in DokuWiki through 2017-02-19e does not properly encode user input, which leads to a reflected file download vulnerability, and allows remote attackers to run arbitrary programs.", "edition": 4, "reporter": "NVD", "published": "2018-02-03T10:29:00", "title": "CVE-2017-18123", "type": "cve", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2017-18123"], "scanner": [], "modified": "2018-07-06T21:29:01", "cpe": ["cpe:/o:debian:debian_linux:7.0", "cpe:/a:dokuwiki:dokuwiki:2017-02-19e"], "id": "CVE-2017-18123", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-18123", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "openvas": [{"lastseen": "2018-09-01T23:39:50", "references": ["https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html"], "pluginID": "1361412562310891269", "description": "It was discovered that an XHR/AJAX call did not properly encode user\ninput in the ", "edition": 8, "reporter": "Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net", "published": "2018-02-21T00:00:00", "title": "Debian LTS Advisory ([SECURITY] [DLA 1269-1] dokuwiki security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123"], "modified": "2018-07-10T00:00:00", "id": "OPENVAS:1361412562310891269", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310891269", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: deb_dla_1269.nasl 10474 2018-07-10 08:12:26Z cfischer $\n#\n# Auto-generated from advisory DLA 1269-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.891269\");\n script_version(\"$Revision: 10474 $\");\n script_cve_id(\"CVE-2017-18123\");\n script_name(\"Debian LTS Advisory ([SECURITY] [DLA 1269-1] dokuwiki security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-10 10:12:26 +0200 (Tue, 10 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-02-21 00:00:00 +0100 (Wed, 21 Feb 2018)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2018/02/msg00004.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB7\\.[0-9]+\");\n script_tag(name:\"affected\", value:\"dokuwiki on Debian Linux\");\n script_tag(name:\"insight\", value:\"DokuWiki is a wiki mainly aimed at creating documentation of any kind.\nIt is targeted at developer teams, workgroups and small companies. It\nhas a simple but powerful syntax which makes sure the datafiles remain\nreadable outside the wiki and eases the creation of structured texts.\nAll data is stored in plain text files -- no database is required.\");\n script_tag(name:\"solution\", value:\"For Debian 7 'Wheezy', this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\");\n script_tag(name:\"summary\", value:\"It was discovered that an XHR/AJAX call did not properly encode user\ninput in the 'dokuwiki' wiki platform. This resulted in a reflected file\ndownload vulnerability.\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"dokuwiki\", ver:\"0.0.20120125b-2+deb7u2\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:39:54", "references": ["https://lists.debian.org/debian-lts-announce/2018/07/msg00004.html"], "pluginID": "1361412562310891413", "description": "The call parameter of /lib/exe/ajax.php in DokuWiki through\n2017-02-19e does not properly encode user input, which leads to a\nreflected file download vulnerability, and allows remote attackers to\nrun arbitrary programs.", "edition": 3, "reporter": "Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net", "published": "2018-07-10T00:00:00", "title": "Debian LTS Advisory ([SECURITY] [DLA 1413-1] dokuwiki security update)", "type": "openvas", "enchantments": {"score": {"modified": "2018-09-01T23:39:54", "vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123"], "modified": "2018-07-11T00:00:00", "id": "OPENVAS:1361412562310891413", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310891413", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: deb_dla_1413.nasl 10478 2018-07-11 06:07:00Z ckuersteiner $\n#\n# Auto-generated from advisory DLA 1413-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.891413\");\n script_version(\"$Revision: 10478 $\");\n script_cve_id(\"CVE-2017-18123\");\n script_name(\"Debian LTS Advisory ([SECURITY] [DLA 1413-1] dokuwiki security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-11 08:07:00 +0200 (Wed, 11 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-07-10 00:00:00 +0200 (Tue, 10 Jul 2018)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2018/07/msg00004.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB8\\.[0-9]+\");\n script_tag(name:\"affected\", value:\"dokuwiki on Debian Linux\");\n script_tag(name:\"insight\", value:\"DokuWiki is a wiki mainly aimed at creating documentation of any kind.\nIt is targeted at developer teams, workgroups and small companies. It\nhas a simple but powerful syntax which makes sure the datafiles remain\nreadable outside the wiki and eases the creation of structured texts.\nAll data is stored in plain text files -- no database is required.\");\n script_tag(name:\"solution\", value:\"For Debian 8 'Jessie', these problems have been fixed in version\n0.0.20140505.a+dfsg-4+deb8u1.\n\nWe recommend that you upgrade your dokuwiki packages.\");\n script_tag(name:\"summary\", value:\"The call parameter of /lib/exe/ajax.php in DokuWiki through\n2017-02-19e does not properly encode user input, which leads to a\nreflected file download vulnerability, and allows remote attackers to\nrun arbitrary programs.\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"dokuwiki\", ver:\"0.0.20140505.a+dfsg-4+deb8u1\", rls_regex:\"DEB8\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-26T14:35:07", "references": ["https://github.com/splitbrain/dokuwiki/issues/2029"], "pluginID": "1361412562310140814", "description": "The call parameter of /lib/exe/ajax.php in DokuWiki does not properly encode\nuser input, which leads to a reflected file download vulnerability, and allows remote attackers to run arbitrary\nprograms.", "edition": 7, "reporter": "This script is Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-02-27T00:00:00", "title": "DokuWiki Reflected File Download Vulnerability", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 6.8}}, "naslFamily": "Web application abuses", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123"], "modified": "2018-10-26T00:00:00", "id": "OPENVAS:1361412562310140814", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310140814", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_dokuwiki_file_download_vuln.nasl 12116 2018-10-26 10:01:35Z mmartin $\n#\n# DokuWiki Reflected File Download Vulnerability\n#\n# Authors:\n# Christian Kuersteiner <christian.kuersteiner@greenbone.net>\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:dokuwiki:dokuwiki\";\n\nif (description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.140814\");\n script_version(\"$Revision: 12116 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-26 12:01:35 +0200 (Fri, 26 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-02-27 10:06:40 +0700 (Tue, 27 Feb 2018)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_tag(name:\"qod_type\", value:\"remote_vul\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_name(\"DokuWiki Reflected File Download Vulnerability\");\n\n script_category(ACT_ATTACK);\n\n script_copyright(\"This script is Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Web application abuses\");\n script_dependencies(\"gb_dokuwiki_detect.nasl\");\n script_mandatory_keys(\"dokuwiki/installed\");\n\n script_tag(name:\"summary\", value:\"The call parameter of /lib/exe/ajax.php in DokuWiki does not properly encode\nuser input, which leads to a reflected file download vulnerability, and allows remote attackers to run arbitrary\nprograms.\");\n\n script_tag(name:\"vuldetect\", value:\"Sends a crafted HTTP GET request and checks the response.\");\n\n script_tag(name:\"affected\", value:\"DokuWiki 2017-02-19e and prior.\");\n\n script_tag(name:\"solution\", value:\"Apply the provided patch.\");\n\n script_xref(name:\"URL\", value:\"https://github.com/splitbrain/dokuwiki/issues/2029\");\n\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"http_func.inc\");\ninclude(\"http_keepalive.inc\");\n\nif (!port = get_app_port(cpe: CPE))\n exit(0);\n\nif (!dir = get_app_location(cpe: CPE, port: port))\n exit(0);\n\nif (dir == \"/\")\n dir = \"\";\n\nurl = dir + '/lib/exe/ajax.php?call=%7c%7c%63%61%6c%63%7c%7c';\n\nif (http_vuln_check(port: port, url: url, pattern: \"AJAX call '\\|\\|calc\\|\\|' unknown!\", check_header: TRUE)) {\n report = report_vuln_url(port: port, url: url);\n security_message(port: port, data: report);\n exit(0);\n}\n\nexit(99);\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-21T16:04:14", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPNTHW3SYF4KDQE32QW2VENBUJAZDRCD", "2018-a1bd27f59b"], "pluginID": "1361412562310875086", "description": "Check the version of dokuwiki", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-09-20T00:00:00", "title": "Fedora Update for dokuwiki FEDORA-2018-a1bd27f59b", "type": "openvas", "enchantments": {"score": {"modified": "2018-09-21T16:04:14", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123", "CVE-2016-7964", "CVE-2017-12583", "CVE-2016-7965", "CVE-2017-12979", "CVE-2017-12980"], "modified": "2018-09-21T00:00:00", "id": "OPENVAS:1361412562310875086", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310875086", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_a1bd27f59b_dokuwiki_fc27.nasl 11513 2018-09-21 03:48:51Z ckuersteiner $\n#\n# Fedora Update for dokuwiki FEDORA-2018-a1bd27f59b\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.875086\");\n script_version(\"$Revision: 11513 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-21 05:48:51 +0200 (Fri, 21 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-09-20 07:53:19 +0200 (Thu, 20 Sep 2018)\");\n script_cve_id(\"CVE-2016-7964\", \"CVE-2016-7965\", \"CVE-2017-12583\", \"CVE-2017-12979\",\n \"CVE-2017-12980\", \"CVE-2017-18123\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for dokuwiki FEDORA-2018-a1bd27f59b\");\n script_tag(name:\"summary\", value:\"Check the version of dokuwiki\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present\n on the target host.\");\n script_tag(name:\"insight\", value:\"DokuWiki is a standards compliant, simple to\n use Wiki, mainly aimed at creating documentation of any kind. It has a simple\n but powerful syntax which makes sure the data-files remain readable outside\n the Wiki and eases the creation of structured texts.\n\nAll data is stored in plain text files no database is required.\n\");\n script_tag(name:\"affected\", value:\"dokuwiki on Fedora 27\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-a1bd27f59b\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XPNTHW3SYF4KDQE32QW2VENBUJAZDRCD\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"dokuwiki\", rpm:\"dokuwiki~20180422a~2.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-10T11:29:37", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IU2HDQATJGCT4PFNU5MG6KG37PPXT5QC", "2018-be9f4838dd"], "pluginID": "1361412562310875036", "description": "Check the version of dokuwiki", "edition": 1, "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "published": "2018-09-06T00:00:00", "title": "Fedora Update for dokuwiki FEDORA-2018-be9f4838dd", "type": "openvas", "enchantments": {"score": {"modified": "2018-09-10T11:29:37", "vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123", "CVE-2016-7964", "CVE-2017-12583", "CVE-2016-7965", "CVE-2017-12979", "CVE-2017-12980"], "modified": "2018-09-10T00:00:00", "id": "OPENVAS:1361412562310875036", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310875036", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_be9f4838dd_dokuwiki_fc28.nasl 11292 2018-09-10 03:14:17Z ckuersteiner $\n#\n# Fedora Update for dokuwiki FEDORA-2018-be9f4838dd\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.875036\");\n script_version(\"$Revision: 11292 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-10 05:14:17 +0200 (Mon, 10 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-09-06 07:31:21 +0200 (Thu, 06 Sep 2018)\");\n script_cve_id(\"CVE-2016-7964\", \"CVE-2016-7965\", \"CVE-2017-12583\", \"CVE-2017-12979\",\n \"CVE-2017-12980\", \"CVE-2017-18123\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for dokuwiki FEDORA-2018-be9f4838dd\");\n script_tag(name:\"summary\", value:\"Check the version of dokuwiki\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present\n on the target host.\");\n script_tag(name:\"insight\", value:\"DokuWiki is a standards compliant, simple to\n use Wiki, mainly aimed at creating documentation of any kind. It has a simple but\n powerful syntax which makes sure the data-files remain readable outside the Wiki\n and eases the creation of structured texts.\n\nAll data is stored in plain text files no database is required.\n\");\n script_tag(name:\"affected\", value:\"dokuwiki on Fedora 28\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n\n script_xref(name:\"FEDORA\", value:\"2018-be9f4838dd\");\n script_xref(name:\"URL\" , value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IU2HDQATJGCT4PFNU5MG6KG37PPXT5QC\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC28\")\n{\n\n if ((res = isrpmvuln(pkg:\"dokuwiki\", rpm:\"dokuwiki~20180422a~1.fc28\", rls:\"FC28\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2018-10-16T22:13:06", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "8", "packageVersion": "0.0.20140505.a+dfsg-4+deb8u1", "arch": "all", "packageFilename": "dokuwiki_0.0.20140505.a+dfsg-4+deb8u1_all.deb", "packageName": "dokuwiki", "operator": "lt"}], "description": "Package : dokuwiki\nVersion : 0.0.20140505.a+dfsg-4+deb8u1\nCVE ID : CVE-2017-18123\nDebian Bug : 889281\n\nThe call parameter of /lib/exe/ajax.php in DokuWiki through\n2017-02-19e does not properly encode user input, which leads to a\nreflected file download vulnerability, and allows remote attackers to\nrun arbitrary programs.\n\nFor Debian 8 &quot;Jessie&quot;, these problems have been fixed in version\n0.0.20140505.a+dfsg-4+deb8u1.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nFurther information about Debian LTS security advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://wiki.debian.org/LTS\n", "edition": 1, "reporter": "Debian", "published": "2018-07-05T16:36:51", "title": "[SECURITY] [DLA 1413-1] dokuwiki security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:13:06", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-18123"], "modified": "2018-07-05T16:36:51", "id": "DEBIAN:DLA-1413-1:F17EA", "href": "https://lists.debian.org/debian-lts-announce/2018/debian-lts-announce-201807/msg00004.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-10-16T22:13:01", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "7", "packageVersion": "0.0.20120125b-2+deb7u2", "arch": "all", "packageFilename": "dokuwiki_0.0.20120125b-2+deb7u2_all.deb", "packageName": "dokuwiki", "operator": "lt"}], "description": "Package : dokuwiki\nVersion : 0.0.20120125b-2+deb7u2\nCVE ID : CVE-2017-18123\nDebian Bug : #889281\n\nIt was discovered that an XHR/AJAX call did not properly encode user\ninput in the &quot;dokuwiki&quot; wiki platform. This resulted in a reflected file\ndownload vulnerability.\n\nFor Debian 7 &quot;Wheezy&quot;, this issue has been fixed in dokuwiki version\n0.0.20120125b-2+deb7u2.\n\nWe recommend that you upgrade your dokuwiki packages.\n\n\nRegards,\n\n- -- \n ,&#x27;&#x27;`.\n : :&#x27; : Chris Lamb\n `. `&#x27;` lamby@debian.org / chris-lamb.co.uk\n `-\n\n", "edition": 1, "reporter": "Debian", "published": "2018-02-04T10:51:52", "title": "[SECURITY] [DLA 1269-1] dokuwiki security update", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:13:01", "vector": "NONE", "value": 4.3}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-18123"], "modified": "2018-02-04T10:51:52", "id": "DEBIAN:DLA-1269-1:0F603", "href": "https://lists.debian.org/debian-lts-announce/2018/debian-lts-announce-201802/msg00004.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2019-01-16T20:36:17", "references": ["https://packages.debian.org/source/jessie/dokuwiki", "https://lists.debian.org/debian-lts-announce/2018/07/msg00004.html"], "pluginID": "110926", "description": "The call parameter of /lib/exe/ajax.php in DokuWiki through\n2017-02-19e does not properly encode user input, which leads to a\nreflected file download vulnerability, and allows remote attackers to\nrun arbitrary programs.\n\nFor Debian 8 'Jessie', these problems have been fixed in version\n0.0.20140505.a+dfsg-4+deb8u1.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2018-07-06T00:00:00", "title": "Debian DLA-1413-1 : dokuwiki security update", "type": "nessus", "enchantments": {"score": {"modified": "2019-01-16T20:36:17", "vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-18123"], "modified": "2018-08-08T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:dokuwiki"], "id": "DEBIAN_DLA-1413.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=110926", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1413-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(110926);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/08/08 12:52:14\");\n\n script_cve_id(\"CVE-2017-18123\");\n\n script_name(english:\"Debian DLA-1413-1 : dokuwiki security update\");\n script_summary(english:\"Checks dpkg output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The call parameter of /lib/exe/ajax.php in DokuWiki through\n2017-02-19e does not properly encode user input, which leads to a\nreflected file download vulnerability, and allows remote attackers to\nrun arbitrary programs.\n\nFor Debian 8 'Jessie', these problems have been fixed in version\n0.0.20140505.a+dfsg-4+deb8u1.\n\nWe recommend that you upgrade your dokuwiki packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2018/07/msg00004.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/dokuwiki\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected dokuwiki package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:dokuwiki\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/07/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/07/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"dokuwiki\", reference:\"0.0.20140505.a+dfsg-4+deb8u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}