Vulnerabilities > CVE-2006-2945 - Information Disclosure vulnerability in Dokuwiki
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors. This affects only users who have Access Control Lists enabled (off by default) and who have restricted the READ permission for certain pages for logged in users. This vulnerability is addressed in the following product release: Andreas Gohr, DokuWiki, Release 2006-03-09b