dokuwiki

• Author: kikadf
• Vulnerable: 2012_10_13-1
• Unaffected: 2014_09_29-1arcturus1

Two vulnerabilities have been discovered in dokuwiki. Access control in the media manager was insufficiently restricted and authentication could be bypassed when using Active Directory for LDAP authentication.

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8761
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8762
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8763
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8764