Hi all!
I just posted this at http://www.splitbrain.org/b2/index.php?m=200505
but I want to make sure it is heard by as much people as possible:
------------------------------------------------------------------------
To everyone using an DokuWiki Version older than 2005-02-18a!
You need to make sure to either upgrade or apply the the available bugfix [1].
This is serious! There is some script kiddy going around hacking websites using
a bug in DokuWikis upload function.
To check your version call doku.php?do=check on your server. If it is lower
than 2005-02-18a you're most likely vulnerable. Note: 2005-02-18 releases
downloaded after April 10th are already the a version with the fix included.
Read more here: wiki:discussion:effdee_defacements [2]
[1] http://bugs.splitbrain.org/index.php?do=details&id=247
[2] http://wiki.splitbrain.org/wiki:discussion:effdee_defacements
------------------------------------------------------------------------
This is not a new bug. It's known and published since April the 10th and
freshmeat subscribers were informed the very same day. But obviously there are
still a lot of people running older versions. So if you know someone who does
so please send him an email pointing him to the bugfix.
Andi
