Approved changes feed: RSS · Atom

cpe:2.3:a:andreas_gohr:dokuwiki:release_2004-07-04:*:*:*:*:*:*:*

part: a version: release_2004-07-04 update: *

VendorAndreas Gohr (a4658386-3843-5995-b060-5bea819353f1)
ProductDokuwiki (9c540088-be0d-55e8-acc6-feb8e635a857)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/dokuwiki purl2cpe 2026-06-01 10:15:23.928015
pkg:deb/ubuntu/dokuwiki purl2cpe 2026-06-01 10:15:23.928017
pkg:github/splitbrain/dokuwiki purl2cpe 2026-06-01 10:15:23.928018
pkg:rpm/fedora/dokuwiki purl2cpe 2026-06-01 10:15:23.928020
pkg:rpm/opensuse/dokuwiki purl2cpe 2026-06-01 10:15:23.928021

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2006-4679 vulnerable 2026-06-08 04:49:18.531126 Details available
DokuWiki before 2006-03-09c enables the debug feature by default, which allows remote attackers to obtain sensitive information by calling doku.php with the X-DOKUWIKI-DO HTTP header set to "debug".
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:41.086Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4675 vulnerable 2026-06-08 04:49:18.522831 Details available
Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors.
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:41.090Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4674 vulnerable 2026-06-08 04:49:18.509647 Details available
Direct static code injection vulnerability in doku.php in DokuWiki before 2006-030-09c allows remote attackers to execute arbitrary PHP code via the X-FORWARDED-FOR HTTP header, which is stored in config.php.
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:40.296Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-2945 vulnerable 2026-06-08 04:49:07.941293 Details available
Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors.
Published: 2006-06-12T20:00:00.000Z
Updated: 2024-08-07T18:06:27.227Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-2878 vulnerable 2026-06-08 04:49:07.760696 Details available
The spellchecker (spellcheck.php) in DokuWiki 2006/06/04 and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" that is inserted into a regular expression that is processed by preg_replace with the /e (executable) modifier.
Published: 2006-06-07T00:00:00.000Z
Updated: 2024-08-07T18:06:27.163Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-1165 vulnerable 2026-06-08 04:48:56.381094 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2004-2560 vulnerable 2026-06-08 04:48:10.179353 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2004-2559 vulnerable 2026-06-08 04:48:10.173216 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.