Lucene search
K

5 matches found

Mageia
Mageia
added 2014/10/31 3:53 p.m.71 views

Updated dokuwiki packages fix security vulnerabilities

inc/template.php in DokuWiki before 2014-05-05a only checks for access to the root namespace, which allows remote attackers to access arbitrary images via a media file details ajax call CVE-2014-8761. The ajaxmediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access...

5CVSS7AI score0.02519EPSS
Exploits0References4
NVD
NVD
added 2014/10/22 2:55 p.m.27 views

CVE-2014-8762

The ajaxmediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter...

5CVSS6.5AI score0.02366EPSS
Exploits0References7
CVE
CVE
added 2014/10/22 2:0 p.m.62 views

CVE-2014-8762

DokuWiki is affected by CVE-2014-8762 (and related CVEs in the same update set). The issue: the ajax_mediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter, and related failures (e.g., inc/template.php) disc...

5CVSS6.5AI score0.02366EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2014/10/22 2:0 p.m.32 views

CVE-2014-8762

The ajaxmediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter...

6.3AI score0.02366EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2014/10/22 2:0 p.m.26 views

CVE-2014-8762

The ajaxmediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter...

5CVSS6.5AI score0.02366EPSS
Exploits0
Rows per page
Query Builder