News Feed

News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Stefan Esser's Blog:
DokuWiki remote PHP code injection
June 05, 2006 @ 06:08:12

Stefan Esser has posted this new security issue he discovered in the DokuWiki application.

While searching for the perfect Wiki PHP application for my own german/korean wiki I tested DokuWiki and found an ugly security hole, that allows remote PHP code injection through it's AJAX spellchecking service.

You can read up on his full advisory here, including the location/code of the issue.

0 comments voice your opinion now!
remote injection security advisory dokuwiki remote injection security advisory dokuwiki

blog comments powered by Disqus

Similar Posts

Human Edited Directory: Now remote debugging is possible for PHP Using an Access Database with PHP

Ed Finkler's Blog: So what is the state of secure development in PHP?

Ilia Alshanetsky\'s Blog: php|tek 2006 PHP security exploit with GIF images

Community Events

Don't see your event here?
Let us know!

framework bugfix tips zendserver release introduction api library podcast community series language conference developer laravel deployment list symfony interview opinion

All content copyright, 2014 :: - Powered by the Solar PHP Framework