CPE-62A510CE-0BB0-4B1E-B4FC-4BB7B0006323 Detail

CPE Details

DokuWiki 2017-02-19c

Vendor

dokuwiki

Product

dokuwiki

Version

2017-02-19c

Created

2019-09-23
15h57 +00:00

Modified

2019-09-23
15h57 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:dokuwiki:dokuwiki:2017-02-19c:::::::*

Informations

Vendor

dokuwiki

Product

dokuwiki

Version

2017-02-19c

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-34408	2023-06-04 22h00 +00:00	DokuWiki before 2023-04-04a allows XSS via RSS titles.	5.4	Medium
CVE-2022-3123	2022-09-05 08h10 +00:00	Cross-site Scripting (XSS) - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a.	6.1	Medium
CVE-2018-15474	2018-09-07 20h00 +00:00	CSV Injection (aka Excel Macro Injection or Formula Injection) in /lib/plugins/usermanager/admin.php in DokuWiki 2018-04-22a and earlier allows remote attackers to exfiltrate sensitive data and to execute arbitrary code via a value that is mishandled in a CSV export. NOTE: the vendor has stated "this is not a security problem in DokuWiki.	9.6	Critical
CVE-2017-18123	2018-02-03 02h00 +00:00	The call parameter of /lib/exe/ajax.php in DokuWiki through 2017-02-19e does not properly encode user input, which leads to a reflected file download vulnerability, and allows remote attackers to run arbitrary programs.	8.6	High
CVE-2017-12979	2017-08-21 05h00 +00:00	DokuWiki through 2017-02-19c has stored XSS when rendering a malicious language name in a code element, in /inc/parser/xhtml.php. An attacker can create or edit a wiki with this element to trigger JavaScript execution.	6.1	Medium
CVE-2017-12980	2017-08-21 05h00 +00:00	DokuWiki through 2017-02-19c has stored XSS when rendering a malicious RSS or Atom feed, in /inc/parser/xhtml.php. An attacker can create or edit a wiki that uses RSS or Atom data from an attacker-controlled server to trigger JavaScript execution. The JavaScript can be in an author field, as demonstrated by the dc:creator element.	6.1	Medium
CVE-2010-0287	2010-02-15 17h00 +00:00	Directory traversal vulnerability in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to list the contents of arbitrary directories via a .. (dot dot) in the ns parameter.	5
CVE-2010-0288	2010-02-15 17h00 +00:00	A typo in the administrator permission check in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to gain privileges and access closed wikis by editing current ACL statements, as demonstrated in the wild in January 2010.	7.5
CVE-2010-0289	2010-02-15 17h00 +00:00	Multiple cross-site request forgery (CSRF) vulnerabilities in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25c allow remote attackers to hijack the authentication of administrators for requests that modify access control rules, and other unspecified requests, via unknown vectors.	6.8

DokuWiki 2017-02-19c

CPE Details

CPE Name: cpe:2.3:a:dokuwiki:dokuwiki:2017-02-19c:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:dokuwiki:dokuwiki:2017-02-19c:::::::*