Back to search
CVE-2004-2560
Published: Nov 22, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
DokuWiki before 2004-10-19, when used on a web server that permits execution based on file extension, allows remote attackers to execute arbitrary code by uploading a file with an appropriate extension such as ".php" or ".cgi".
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
dokuwiki-file-upload(17899)
vdb-entry
x_refsource_XF
11084
vdb-entry
x_refsource_OSVDB
http://wiki.splitbrain.org/wiki:old_changes
x_refsource_CONFIRM
11486
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now