Oval Definition:oval:com.ubuntu.disco:def:2018154740000000
Revision Date:2018-09-07Version:1
Title:CVE-2018-15474 on Ubuntu 19.04 (disco) - medium.
Description:** DISPUTED ** CSV Injection (aka Excel Macro Injection or Formula Injection) in /lib/plugins/usermanager/admin.php in DokuWiki 2018-04-22a and earlier allows remote attackers to exfiltrate sensitive data and to execute arbitrary code via a value that is mishandled in a CSV export. NOTE: the vendor has stated "this is not a security problem in DokuWiki."
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-15474
Platform(s):Ubuntu 19.04
Product(s):
Definition Synopsis
  • Ubuntu 19.04 (disco) is installed.
  • AND dokuwiki package in disco is affected and may need fixing.
    • BACK