DokuWiki Remote Arbitrary File Upload Vulnerability

info
discussion
exploit
solution
references

DokuWiki Remote Arbitrary File Upload Vulnerability

DokuWiki is reported prone to a remote arbitrary file upload vulnerability. This issue can allow attackers to upload arbitrary files such as PHP scripts to a vulnerable computer. These files could be executed by the hosting Web server, resulting in arbitrary code execution.

This vulnerability has been reported for DokuWiki 2004-09-30 and prior.