Welcome to Geeklog, Anonymous Sunday, December 01 2024 @ 11:30 am EST

Geeklog Forums

Dokuwiki plugin 1.7.1


Status: offline

::Ben

Forum User
Full Member
Registered: 01/14/05
Posts: 1569
Location:la rochelle, France
dokuwiki.org just released a Security Fix for Anteater

This security update fixes problems in the XMLRPC interface where ACLs where not checked correctly sometimes, making it possible to access information that should not have been accessible. This only affects users who have enabled the XMLRPC interface (default is off).

This update also includes a fix that caused errors in the general ACL checking function that could be exploited to gain access to restricted pages in rare conditions.

If you want to manually update, replace

lib/exe/xmlrpc.php with https://github.com/splitbrain/dokuwiki/raw/stable/lib/exe/xmlrpc.php
inc/auth.php with https://github.com/splitbrain/dokuwiki/raw/stable/inc/auth.php

And increase the $updateVersion variable in doku.php to 30.

::Ben
I'm available to customise your themes or plugins for your Geeklog CMS
 Quote

All times are EST. The time is now 11:30 am.

  • Normal Topic
  • Sticky Topic
  • Locked Topic
  • New Post
  • Sticky Topic W/ New Post
  • Locked Topic W/ New Post
  •  View Anonymous Posts
  •  Able to post
  •  Filtered HTML Allowed
  •  Censored Content