CNNVD-202601-4969 Information

CNNVD ID

CNNVD-202601-4969

Related CVE

CVE-2025-51958

• CNNVD Published: 2026-01-30

Description (Chinese)

runcommand是aelsantex个人开发者的一个dokuwiki的插件。 runcommand 2014-04-01版本存在安全漏洞，该漏洞源于lib/plugins/runcommand/postaction.php文件存在缺陷，可能导致未经身份验证的攻击者执行任意系统命令。

Description (English)

Runcommand is a dokuwiki plugin for aaelsantex personal developer. There is a security loophole in the runcommand 2014-04-01 version, which stems from deficiencies in lib/plugins/runcompand/position.php documents, which may lead to arbitrary system orders being carried out by unidentified attackers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-01-30

Last Modified

2026-02-24

References

https://gist.github.com/NtustLin/f64528002e4f61874045799127dc49a4 https://github.com/aelsantex/runcommand https://www.dokuwiki.org/plugin:runcommand https://access.redhat.com/security/cve/cve-2025-51958