CVE-2006-2945

Опубликовано: 12 июн. 2006

Источник: nvd

CVSS2: 4

EPSS Низкий

Описание

Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors.

Ссылки

http://bugs.splitbrain.org/?do=details&id=825
Patch
http://secunia.com/advisories/20478
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2006/2172
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/27081
http://bugs.splitbrain.org/?do=details&id=825
Patch
http://secunia.com/advisories/20478
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2006/2172
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/27081

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:andreas_gohr:dokuwiki:*:*:*:*:*:*:*:*

Версия до release_2006-03-09 (включая)

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-04:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-07:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-12:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-21:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-25:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-08-08:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-08-15a:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-08-22:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-09-12:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-09-25:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-09-30:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-10-19:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-11-01:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-11-02:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-11-10:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-01-14:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-01-15:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-01-16a:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-02-06:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-02-18:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-05-07:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-07-01:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-07-13:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-09-19:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2005-09-22:*:*:*:*:*:*:*

cpe:2.3:a:andreas_gohr:dokuwiki:release_2006-03-05:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00284

Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2006-2945

ubuntu

около 19 лет назад

CVE-2006-2945

debian

около 19 лет назад

Unspecified vulnerability in the user profile change functionality in ...

GHSA-qxv2-58jf-jpc7

github

больше 3 лет назад

EPSS

Процентиль: 52%

0.00284

Низкий

4 Medium

CVSS2

Дефекты

NVD-CWE-noinfo