Welcome to Geeklog, Anonymous Tuesday, November 26 2024 @ 12:36 pm EST

Geeklog Forums

Dokuwiki plugin 1.7.1

New Topic Post Reply

01/17/11 07:22am (Read 1,553 times)

Status: offline

::Ben

Forum User

Full Member

Registered: 01/14/05

Posts: 1569

Location:la rochelle, France

dokuwiki.org just released a Security Fix for Anteater

This security update fixes problems in the XMLRPC interface where ACLs where not checked correctly sometimes, making it possible to access information that should not have been accessible. This only affects users who have enabled the XMLRPC interface (default is off).

This update also includes a fix that caused errors in the general ACL checking function that could be exploited to gain access to restricted pages in rare conditions.

If you want to manually update, replace

lib/exe/xmlrpc.php with https://github.com/splitbrain/dokuwiki/raw/stable/lib/exe/xmlrpc.php
inc/auth.php with https://github.com/splitbrain/dokuwiki/raw/stable/inc/auth.php

And increase the $updateVersion variable in doku.php to 30.

::Ben

I'm available to customise your themes or plugins for your Geeklog CMS

14 9 Quote

New Topic Post Reply

All times are EST. The time is now 12:36 pm.

Normal Topic
Sticky Topic
Locked Topic

New Post
Sticky Topic W/ New Post
Locked Topic W/ New Post

View Anonymous Posts
Able to post
Filtered HTML Allowed
Censored Content

Geeklog Forums

Dokuwiki plugin 1.7.1

::Ben

Search

Resources

About

Getting started

Support

Development

Topics

User Functions

What's New

Articles last 4 weeks

Comments last 4 weeks

Pages last 4 weeks

Links last 4 weeks

Downloads last 4 weeks