CVE-2016-7965: Input Validation
First published: Mon Oct 31 2016(Updated: )
DokuWiki 2016-06-26a and older uses $_SERVER[HTTP_HOST] instead of the baseurl setting as part of the password-reset URL. This can lead to phishing attacks. (A remote unauthenticated attacker can change the URL's hostname via the HTTP Host header.) The vulnerability can be triggered only if the Host header is not part of the web server routing process (e.g., if several domains are served by the same web server).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| DokuWiki | <=2016-06-26a |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-7965?
The severity of CVE-2016-7965 is considered to be Medium, as it allows for potential phishing attacks.
How do I fix CVE-2016-7965?
To fix CVE-2016-7965, upgrade to DokuWiki version 2016-06-27 or later.
Who is affected by CVE-2016-7965?
CVE-2016-7965 affects DokuWiki versions 2016-06-26a and older.
What can attackers do with CVE-2016-7965?
Attackers can exploit CVE-2016-7965 to craft a malicious password-reset URL, potentially leading users to a phishing site.
Is CVE-2016-7965 exploitable remotely?
Yes, CVE-2016-7965 is exploitable remotely by unauthenticated attackers.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dokuwiki
- canonical/dokuwiki
- version/dokuwiki/2016-06-26a