Twiki · Twiki · CVE-2006-1386
**Name of the Vulnerable Software and Affected Versions**
TWiki versions 4.0 through 4.0.1
**Description**
The issue concerns the rdiff and preview scripts in TWiki, which ignore access control settings. This allows remote attackers to read restricted areas and access restricted content in TWiki topics.
**Recommendations**
For TWiki versions 4.0 through 4.0.1, consider disabling the rdiff and preview scripts until a patch is available to prevent remote attackers from accessing restricted content.