Unrated severityNVD Advisory· Published Feb 12, 2026· Updated Mar 5, 2026

Dokuwiki 2018-04-22b - Username Enumeration

CVE-2019-25338

Description

DokuWiki 2018-04-22b contains a username enumeration vulnerability in its password reset functionality that allows attackers to identify valid user accounts. Attackers can submit different usernames to the password reset endpoint and distinguish between existing and non-existing accounts by analyzing the server's error response messages.

Affected products

Dokuwiki/Dokuwikiv5
Range: 2018-04-22b "Greebo"

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/47731mitreexploit
www.vulncheck.com/advisories/dokuwiki-b-username-enumerationmitrethird-party-advisory
download.dokuwiki.orgmitreproduct
www.dokuwiki.org/dokuwikimitreproduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000