1
Candidate: CVE-2008-5186
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5186
6
** DISPUTED ** The set_language_path function in geshi.php in Generic
7
Syntax Highlighter (GeSHi) before 1.0.8.1 might allow remote attackers to
8
conduct file inclusion attacks via crafted inputs that influence the
9
default language path ($path variable). NOTE: this issue has been disputed
10
by a vendor, stating that only a static value is used, so this is not a
11
vulnerability in GeSHi. Separate CVE identifiers would be created for web
12
applications that integrate GeSHi in a way that allows control of the
13
default language path.
22
upstream_dokuwiki: released (0.0.20080505-3.1)
23
dapper_dokuwiki: ignored (reached end-of-life)
24
gutsy_dokuwiki: needs-triage (reached end-of-life)
25
hardy_dokuwiki: ignored (reached end-of-life)
26
intrepid_dokuwiki: needs-triage (reached end-of-life)
27
jaunty_dokuwiki: not-affected (0.0.20080505-5)
28
karmic_dokuwiki: not-affected
29
lucid_dokuwiki: not-affected
30
maverick_dokuwiki: not-affected
31
natty_dokuwiki: not-affected
32
oneiric_dokuwiki: not-affected
33
devel_dokuwiki: not-affected
36
upstream_pgfouine: released (1.0-1.1)
38
gutsy_pgfouine: needs-triage (reached end-of-life)
39
hardy_pgfouine: ignored (reached end-of-life)
40
intrepid_pgfouine: needs-triage (reached end-of-life)
41
jaunty_pgfouine: not-affected (1.0-1.2)
42
karmic_pgfouine: not-affected
43
lucid_pgfouine: not-affected
44
maverick_pgfouine: not-affected
45
natty_pgfouine: not-affected
46
oneiric_pgfouine: not-affected
47
devel_pgfouine: not-affected
50
upstream_geshi: released (1.0.8.1-1)
52
gutsy_geshi: needs-triage (reached end-of-life)
53
hardy_geshi: ignored (reached end-of-life)
54
intrepid_geshi: needs-triage (reached end-of-life)
55
jaunty_geshi: not-affected (1.0.8.1-1)
56
karmic_geshi: not-affected
57
lucid_geshi: not-affected
58
maverick_geshi: not-affected
59
natty_geshi: not-affected
60
oneiric_geshi: not-affected
61
devel_geshi: not-affected