VYPR
Medium severity6.1NVD Advisory· Published Apr 30, 2024· Updated Apr 15, 2026

CVE-2024-33103

CVE-2024-33103

Description

An arbitrary file upload vulnerability in the Media Manager component of DokuWiki 2024-02-06a allows attackers to execute arbitrary code by uploading a crafted SVG file. NOTE: as noted in the 4267 issue reference, there is a position that exploitability can only occur with a misconfiguration of the product.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Dokuwiki/Dokuwikireferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 2024-02-06a

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.