CVE-2010-0289
Priority
Medium
Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the ACL
Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25c allow
remote attackers to hijack the authentication of administrators for
requests that modify access control rules, and other unspecified requests,
via unknown vectors.
Manager plugin (plugins/acl/ajax.php) in DokuWiki before 2009-12-25c allow
remote attackers to hijack the authentication of administrators for
requests that modify access control rules, and other unspecified requests,
via unknown vectors.
References
Package
| Upstream: | needs-triage |
| Ubuntu 8.04 LTS (Hardy Heron): | ignored (reached end-of-life) |
| Ubuntu 10.04 LTS (Lucid Lynx): | needs-triage |
| Ubuntu 11.10 (Oneiric Ocelot): | ignored (reached end-of-life) |
| Ubuntu 12.04 LTS (Precise Pangolin): | needs-triage |
| Ubuntu 12.10 (Quantal Quetzal): | needs-triage |
| Ubuntu 13.04 (Raring Ringtail): | needs-triage |
| Ubuntu 13.10 (Saucy Salamander): | needs-triage |