Sergej Zagursky

**Name of the Vulnerable Software and Affected Versions** TWiki versions 4.0 through 4.0.1 **Description** The issue concerns the rdiff and preview scripts in TWiki, which ignore access control settings. This allows remote attackers to read restricted areas and access restricted content in TWiki topics. **Recommendations** For TWiki versions 4.0 through 4.0.1, consider disabling the rdiff and preview scripts until a patch is available to prevent remote attackers from accessing restricted content.