Security Breach in Closing Registering
I closed the registration of Wiki from options (openregister=0). Then, as a public (non-user) I tried in the browse the url that Wiki uses for registration (http://example.com/dokuwiki/doku.php?do=register&id=start). It won't allow registration but displays the secure content of start page, while in ACL configuration file I defined no access to start for public (It respect the rule (no displaying) in normal situations and nobody is able to see the content of first page). Given this bug, anyone can nevigate all Wiki by gradually learning the name of the pages and trying them in the url with 'do=register'!!!!
Please fix this (checking the ACL when do=register for displaying any page).
Cheers,
Hamid (
hamid_m79@yahoo.com)
-------------------------
QUICKFIX-SOLUTION placed here until I figure out how to make comments publically available....
You're right. As a hotfix: Users who disabled openregister should remove 'register' from the array in the permission check (Around line 116 in doku.php).
So change the line from
}elseif(in_array($ACT,array('login','register','search','recent'))){
to
}elseif(in_array($ACT,array('login','search','recent'))){