CVE-2008-2672

Name of the Vulnerable Software and Affected Versions ErfurtWiki versions R1.02b and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via directory traversal vulnerabilities. This can be achieved by using a .. (dot dot) in the ewiki id and ewiki action parameters to "fragments/css.php", and possibly the id parameter to the default URI. The default URI is site-specific but often performs an include once of ewiki.php.

Recommendations For ErfurtWiki versions R1.02b and earlier, consider disabling the register globals setting to mitigate the risk of exploitation. As a temporary workaround, restrict access to the "fragments/css.php" file and the default URI to minimize the risk of exploitation. Avoid using the ewiki id, ewiki action, and id parameters in the affected API endpoints until the issue is resolved.