FreeBSD : dokuwiki -- Local File Inclusion with register_globals on (4f838b74-50a1-11de-b01f-001c2514716c)
High Nessus Plugin ID 39315
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionDokuWiki reports :
A security hole was discovered which allows an attacker to include arbitrary files located on the attacked DokuWiki installation. The included file is executed in the PHP context. This can be escalated by introducing malicious code through uploading file via the media manager or placing PHP code in editable pages.
SolutionUpdate the affected packages.