CVE-2015-2172 in DokuWikiinformación

Resumen (Inglés)

DokuWiki before 2014-05-05d and before 2014-09-29c does not properly check permission for the ACL plugins, which allows remote authenticated users to gain privileges and add or delete ACL rules via a request to the XMLRPC API.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservar

2015-03-01

Divulgación

2015-03-30

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
69241	DokuWiki RPC API escalada de privilegios	284	No probado	Arreglo oficial	CVE-2015-2172

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

MITRE
NVD
CVE Details

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!