| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-4674 | 7.5 |
Direct static code injection vulnerability in doku.php in DokuWiki before 2006-030-09c allows remote attackers to execute arbitrary PHP code via the X-FORWARDED-FOR HTTP header, which is stored in config.php. Successful exploitation requires that "re
|
17-10-2018 - 21:39 | 11-09-2006 - 17:04 | |
| CVE-2006-4679 | 5.0 |
DokuWiki before 2006-03-09c enables the debug feature by default, which allows remote attackers to obtain sensitive information by calling doku.php with the X-DOKUWIKI-DO HTTP header set to "debug". Successful exploitation requires that "register_arg
|
17-10-2018 - 21:39 | 11-09-2006 - 17:04 | |
| CVE-2006-4675 | 7.5 |
Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors. Successful exploitation requires that "register_argc_arg
|
17-10-2018 - 21:39 | 11-09-2006 - 17:04 |