Reini Urban

Name of the Vulnerable Software and Affected Versions: PhpWiki versions prior to 1.3.13p1 Description: The issue allows remote attackers to bypass authentication via an empty password. This occurs when the configuration lacks a nonzero PASSWORD LENGTH MINIMUM, causing ldap bind to return true with certain LDAP implementations. Recommendations: For versions prior to 1.3.13p1, update to version 1.3.13p1 or later to resolve the issue. As a temporary workaround, consider setting a nonzero PASSWORD LENGTH MINIMUM in the configuration to prevent empty passwords from being used.

**Name of the Vulnerable Software and Affected Versions** PhpWiki versions 1.3.x **Description** The issue concerns an unrestricted file upload vulnerability in the UpLoad feature, specifically in the lib/plugin/UpLoad.php file. This allows remote attackers to upload arbitrary PHP files with various extensions, including php3, php4, or php5. **Recommendations** For PhpWiki versions 1.3.x, restrict access to the UpLoad feature in lib/plugin/UpLoad.php to prevent arbitrary file uploads until a patch is available. Consider temporarily disabling the UpLoad feature as a mitigation measure to minimize the risk of exploitation.