Published: 08/06/2009 Updated: 07/11/2023

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

inc/init.php in DokuWiki 2009-02-14, rc2009-02-06, and rc2009-01-30, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the config_cascade[main][default][] parameter to doku.php. NOTE: PHP remote file inclusion is also possible in PHP 5 using ftp:// URLs.

Vulnerable Product	Search on Vulmon	Subscribe to Product
dokuwiki dokuwiki rc2009-02-06
dokuwiki dokuwiki 2009-02-14
dokuwiki dokuwiki rc2009-01-30

# Author_ girex # Homepage_ girexaltervistaorg # CMS_ Dokuwiki # Homepage_ dokuwikiorg # Affected versions_ 2009-02-14 rc2009-02-06 rc2009-01-30 # Bug_ Local file inclusion # Need_ register_globals = On # Vuln description_ # File: /inc/initphp // if available load a preload config file $preload = fullpath(dirname(__FILE ...

Dokuwiki 2009-02-14 Remote/Temporary File Inclusion exploit tested and working I was reading: wwwmilw0rmcom/exploits/8781 by girex [quote] It's not a RFI couse use of file_exists function [/quote] How wrong brother! trick 1 (ftp:// wrapper with php 5): needs register_globals = on allow_url_fopen = On (default) allow_url_include = On ( ...

CWE-94 http://bugs.splitbrain.org/index.php?do=details&task_id=1700 http://secunia.com/advisories/35218 http://www.securityfocus.com/bid/35095 https://www.exploit-db.com/exploits/8812 https://www.exploit-db.com/exploits/8781 http://dev.splitbrain.org/darcsweb/darcsweb.cgi?r=dokuwiki%3Ba=commitdiff%3Bh=20090526145030-7ad00-c0483e021f47898c8597f3bfbdd26c637f891d86.gz https://nvd.nist.gov https://www.exploit-db.com/exploits/8781/

CVE-2009-1960

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect