CVE-2014-8761

Published October 22nd, 2014

View on NVD ↗

CVSS v3

N/A

CVSS v2

MEDIUM

Affected

PROJECT

Description

inc/template.php in DokuWiki before 2014-05-05a only checks for access to the root namespace, which allows remote attackers to access arbitrary images via a media file details ajax call.

dokuwiki/dokuwiki

The DokuWiki Open Source Wiki Engine

GitHub

4.65K