8 matches found
Gentoo Security Advisory GLSA 200908-09 (dokuwiki)
The remote host is missing updates announced in advisory GLSA 200908-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
DokuWiki < 2009-02-14b 'doku.php' LFI Vulnerability
DokuWiki is prone to a local file inclusion LFI vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:dokuwiki:dokuwiki"...
FreeBSD Ports: dokuwiki
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Immunity Canvas: DOKUWIKI_EXEC2
Name| dokuwikiexec2 ---|--- CVE| CVE-2009-1960 Exploit Pack| CANVAS Description| DokuWiki 2009-02-14 Globals overwrite / Code execeution Notes| References: 'www.securityfocus.com/bid/35095' CVE Name: CVE-2009-1960 Repeatability: Infinite CVE Url:...
CVE-2009-1960
inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, when registerglobals is enabled, allows remote attackers to include and execute arbitrary local files via the configcascademaindefault parameter to doku.php. NOTE: PHP remote file inclusion is also possible in PHP 5 using ftp://...
CVE-2009-1960
CVE-2009-1960 affects DokuWiki (versions including 2009-02-14 and earlier rc revisions) where inc/init.php is vulnerable when register_globals is enabled. The flaw allows remote attackers to include and execute arbitrary local files via the config_cascade[main][default][] parameter to doku.php, a...
FreeBSD : dokuwiki -- Local File Inclusion with register_globals on (4f838b74-50a1-11de-b01f-001c2514716c)
DokuWiki reports : A security hole was discovered which allows an attacker to include arbitrary files located on the attacked DokuWiki installation. The included file is executed in the PHP context. This can be escalated by introducing malicious code through uploading file via the media manager o...
CVE-2009-1960
creationtimestamp| type| source ---|---|--- 2009-05-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8812 2009-05-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8781...