Direct static code injection vulnerability in doku.php in DokuWiki before 2006-030-09c allows remote attackers to execute arbitrary PHP code via the X-FORWARDED-FOR HTTP header, which is stored in config.php.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-09-11 17:04
Updated : 2024-02-28 10:42
NVD link : CVE-2006-4674
Mitre link : CVE-2006-4674
CVE.ORG link : CVE-2006-4674
JSON object : View
Products Affected
andreas_gohr
- dokuwiki
CWE