blob: efac18554afe301b5f9632892ac119819ba16465 [file] [log] [blame]
<?xml version="1.0" encoding="utf-8"?>
<glsa id="200908-09">
<title>DokuWiki: Local file inclusion</title>
An input sanitation error in DokuWiki might lead to the dislosure of local
files or even the remote execution of arbitrary code.
<product type="ebuild">dokuwiki</product>
<announced>August 18, 2009</announced>
<revised>August 19, 2009: 02</revised>
<package name="www-apps/dokuwiki" auto="yes" arch="*">
<unaffected range="ge">20090214b</unaffected>
<vulnerable range="lt">20090214b</vulnerable>
DokuWiki is a standards compliant Wiki system written in PHP.
girex reported that data from the "config_cascade" parameter in
inc/init.php is not properly sanitized before being used.
<impact type="high">
A remote attacker could exploit this vulnerability to execute PHP code
from arbitrary local, or, when the used PHP version supports ftp://
URLs, also from remote files via FTP. Furthermore, it is possible to
disclose the contents of local files. NOTE: Successful exploitation
requires the PHP option "register_globals" to be enabled.
Disable "register_globals" in php.ini.
All DokuWiki users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose &quot;&gt;=www-apps/dokuwiki-2009-02-14b&quot;</code>
<uri link="">CVE-2009-1960</uri>
<metadata tag="requester" timestamp="Sun, 19 Jul 2009 18:47:33 +0000">
<metadata tag="submitter" timestamp="Tue, 04 Aug 2009 19:07:45 +0000">
<metadata tag="bugReady" timestamp="Wed, 05 Aug 2009 13:32:43 +0000">