mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-18 20:48:19 +00:00
747 B
747 B
CVE-2010-0288
Description
A typo in the administrator permission check in the ACL Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25b allows remote attackers to gain privileges and access closed wikis by editing current ACL statements, as demonstrated in the wild in January 2010.
POC
Reference
Github
No PoCs found on GitHub currently.