Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3727

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-3727
Last Modified 12 Dec 2013 11:52:05
Published 23 Sep 2011 07:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-3727

Summary

DokuWiki 2009-12-25c allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/tpl/index.php and certain other files.

Vulnerable Systems

Application

  • Dokuwiki 2009-12-25c


References

MLIST - [oss-security] 20110627 Re: CVE request: Joomla unspecified information disclosure vulnerability

MISC - http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/dokuwiki-2009-12-25c

MISC - http://code.google.com/p/inspathx/source/browse/trunk/paths_vuln/%21_README

FEDORA - FEDORA-2012-16605

FEDORA - FEDORA-2012-16614

FEDORA - FEDORA-2012-16550

BID - 56328

GENTOO - GLSA-201301-07

MANDRIVA - MDVSA-2013:073


Last Updated: 27 May 2016 10:58:28