Approved changes feed: RSS · Atom

cpe:2.3:a:andreas_gohr:dokuwiki:release_2006-03-05:*:*:*:*:*:*:*

part: a version: release_2006-03-05 update: *

VendorAndreas Gohr (a4658386-3843-5995-b060-5bea819353f1)
ProductDokuwiki (9c540088-be0d-55e8-acc6-feb8e635a857)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:deb/debian/dokuwiki purl2cpe 2026-06-01 10:15:23.967749
pkg:deb/ubuntu/dokuwiki purl2cpe 2026-06-01 10:15:23.967751
pkg:github/splitbrain/dokuwiki purl2cpe 2026-06-01 10:15:23.967753
pkg:rpm/fedora/dokuwiki purl2cpe 2026-06-01 10:15:23.967754
pkg:rpm/opensuse/dokuwiki purl2cpe 2026-06-01 10:15:23.967755

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2006-5099 vulnerable 2026-06-08 04:49:19.671481 Details available
lib/exec/fetch.php in DokuWiki before 2006-03-09e, when conf[imconvert] is configured to use ImageMagick, allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) w and (2) h parameters, which are not filtered when invoking convert.
Published: 2006-09-29T23:00:00.000Z
Updated: 2024-08-07T19:41:05.138Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-5098 vulnerable 2026-06-08 04:49:19.669354 Details available
lib/exec/fetch.php in DokuWiki before 2006-03-09e allows remote attackers to cause a denial of service (CPU consumption) via large w and h parameters, when resizing an image.
Published: 2006-09-29T23:00:00.000Z
Updated: 2024-08-07T19:41:04.454Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4679 vulnerable 2026-06-08 04:49:18.531569 Details available
DokuWiki before 2006-03-09c enables the debug feature by default, which allows remote attackers to obtain sensitive information by calling doku.php with the X-DOKUWIKI-DO HTTP header set to "debug".
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:41.086Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4675 vulnerable 2026-06-08 04:49:18.523279 Details available
Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors.
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:41.090Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-4674 vulnerable 2026-06-08 04:49:18.522250 Details available
Direct static code injection vulnerability in doku.php in DokuWiki before 2006-030-09c allows remote attackers to execute arbitrary PHP code via the X-FORWARDED-FOR HTTP header, which is stored in config.php.
Published: 2006-09-11T17:00:00.000Z
Updated: 2024-08-07T19:23:40.296Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-2945 vulnerable 2026-06-08 04:49:07.941724 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-2878 vulnerable 2026-06-08 04:49:07.772956 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data
CVE:CVE-2006-1165 vulnerable 2026-06-08 04:48:56.399438 db.gcve.eu details were skipped to keep the page responsive. Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.