DokuWiki 2020-07-29

CPE Details

DokuWiki 2020-07-29
dokuwiki
dokuwiki
2020-07-29
2022-05-18
14h45 +00:00
2022-09-08
13h58 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:dokuwiki:dokuwiki:2020-07-29:*:*:*:*:*:*:*

Informations

Vendor

dokuwiki

Product

dokuwiki

Version

2020-07-29

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-34408 2023-06-04 22h00 +00:00 DokuWiki before 2023-04-04a allows XSS via RSS titles.
5.4
Medium
CVE-2022-3123 2022-09-05 08h10 +00:00 Cross-site Scripting (XSS) - Reflected in GitHub repository splitbrain/dokuwiki prior to 2022-07-31a.
6.1
Medium
CVE-2022-28919 2022-05-12 13h43 +00:00 HTMLCreator release_stable_2020-07-29 was discovered to contain a cross-site scripting (XSS) vulnerability via the function _generateFilename.
6.1
Medium
CVE-2010-0287 2010-02-15 17h00 +00:00 Directory traversal vulnerability in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to list the contents of arbitrary directories via a .. (dot dot) in the ns parameter.
5
CVE-2010-0288 2010-02-15 17h00 +00:00 A typo in the administrator permission check in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to gain privileges and access closed wikis by editing current ACL statements, as demonstrated in the wild in January 2010.
7.5
CVE-2010-0289 2010-02-15 17h00 +00:00 Multiple cross-site request forgery (CSRF) vulnerabilities in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25c allow remote attackers to hijack the authentication of administrators for requests that modify access control rules, and other unspecified requests, via unknown vectors.
6.8