CVE-2014-8763

DokuWiki before 2014-05-05b, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a password starting with a null () character and a valid user name, which triggers an unauthenticated bind.

Date published : 2014-10-22

http://advisories.mageia.org/MGASA-2014-0438.html

https://github.com/splitbrain/dokuwiki/pull/868