DokuWiki '.php' Files Information Disclosure Vulnerability

  1. Network Vulnerabilities
  2. Web application abuses
  3. DokuWiki '.php' Files Information Disclosure Vulnerability
Summary
The host is running DokuWiki and is prone to information disclosure vulnerability.
Impact
Successful exploitation will allow attacker to gain sensitive information. Impact Level: Application
Solution
Upgrade to DokuWiki version dokuwiki-20121013 or later. For updates refer to http://www.splitbrain.org/projects/dokuwiki
Insight
The flaw is due to error in certain '.php' files. A direct request to these files reveals the installation path in an error message.
Affected
DokuWiki version 2009-12-25c.
References
Updated on 2015-03-25
Severity
Medium Severity
Classification
Related Vulnerabilities