CVE-2012-3354

Name of the Vulnerable Software and Affected Versions DokuWiki versions used in Fedora 16, 17, and 18

Description The issue allows remote attackers to obtain sensitive information via the prefix parameter in the "doku.php" file. This occurs when certain PHP error levels are set, resulting in the installation path being revealed in an error message.

Recommendations For DokuWiki versions used in Fedora 16, 17, and 18, consider restricting access to the "doku.php" file until a fix is available. As a temporary workaround, adjust PHP error levels to prevent sensitive information disclosure.