CVE-2004-1925
published 2004-04-12CVE-2004-1925: Multiple SQL injection vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote attackers to execute arbitrary SQL commands via the…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.21%
64.7th percentile
Multiple SQL injection vulnerabilities in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sort_mode parameter in (1) tiki-usermenu.php, (2) tiki-list_file_gallery.php, (3) tiki-directory_ranking.php, (4) tiki-browse_categories.php, (5) tiki-index.php, (6) tiki-user_tasks.php, (7) tiki-directory_ranking.php, (8) tiki-directory_search.php, (9) tiki-file_galleries.php, (10) tiki-list_faqs.php, (11) tiki-list_trackers.php, (12) tiki-list_blogs.php, or via the offset parameter in (13) tiki-usermenu.php, (14) tiki-browse_categories.php, (15) tiki-index.php, (16) tiki-user_tasks.php, (17) tiki-list_faqs.php, (18) tiki-list_trackers.php, or (19) tiki-list_blogs.php.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tiki | tikiwiki_cms_groupware | <= 1.8.1 | — |
| tiki | tikiwiki_cms_groupware | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
TikiWiki Project 1.8 - 'tiki-directory_ranking.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-directory_ranking.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-directory_ranking.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-directory_ranking.php?sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-user_tasks.php?offset & sort_mode' SQL Injections
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-user_tasks.php?offset & sort_mode' SQL Injections
TikiWiki Project 1.8 - 'tiki-user_tasks.php?offset & sort_mode' SQL Injections
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-user_tasks.php?task_useDates=&taskId=[VID]&offset=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_faqs.php?offset' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_faqs.php?offset' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_faqs.php?offset' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_faqs.php?find=&offset=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_blogs.php?offset' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_blogs.php?offset' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_blogs.php?offset' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_blogs.php?find=&offset=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_faqs.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_faqs.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_faqs.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_faqs.php?find=&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_trackers.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_trackers.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_trackers.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_trackers.php?find=&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_trackers.php?offset' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_trackers.php?offset' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_trackers.php?offset' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_trackers.php?find=&offset=[SQL]
tiki-list_trackers.php?find=&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-usermenu.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-usermenu.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-usermenu.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-usermenu.php?find=&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-usermenu.php?offset' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-usermenu.php?offset' SQL Injection
TikiWiki Project 1.8 - 'tiki-usermenu.php?offset' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-usermenu.php?find=&offset=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-file_galleries.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-file_galleries.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-file_galleries.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-file_galleries.php?find=&search=find&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-index.php?comments_offset & offset' SQL Injections
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-index.php?comments_offset & offset' SQL Injections
TikiWiki Project 1.8 - 'tiki-index.php?comments_offset & offset' SQL Injections
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-index.php?page=[VPG]&comments_threshold=[INT]&comments_offset=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-browse_categories.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-browse_categories.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-browse_categories.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-browse_categories.php?find=&deep=off&parentId=[VID]&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-directory_search.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-directory_search.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-directory_search.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-directory_search.php?how=or&words=&where=all&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_blogs.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_blogs.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_blogs.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_blogs.php?find=&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki Project 1.8 - 'tiki-list_file_gallery.php?sort_mode' SQL Injection
exploitdb·2004-04-12
CVE-2004-1925 TikiWiki Project 1.8 - 'tiki-list_file_gallery.php?sort_mode' SQL Injection
TikiWiki Project 1.8 - 'tiki-list_file_gallery.php?sort_mode' SQL Injection
---
source: https://www.securityfocus.com/bid/10100/info
Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload.
tiki-list_file_gallery.php?find=&galleryId=[VID]&offset=[INT]&sort_mode=[SQL]
Exploit-DB
TikiWiki < 1.8.1 - Multiple Vulnerabilities
exploitdb·2004-04-11·CVSS 5.0
CVE-2004-1923 [MEDIUM] TikiWiki < 1.8.1 - Multiple Vulnerabilities
TikiWiki Theme
User Profile > Country Field
User Profile > Real Name
User Profile > Displayed time zone
Directory > Add Site > Name
Directory > Add Site > Description
Directory > Add Site > URL
Directory > Add Site > Country
Remote File/Dir Enumeration Via Traversal:
This issue deals with the map feature TikiWiki uses. If you are using a version prior to 1.8 or if you have not enabled the map feature this probably does not affect you. The map feature calls a .map file to display whatever map a user would like to view, but the problem with this is that it allows you to traverse out of the web directory and call files elsewhere on the box. While this does not allow you to say pull up a file for viewing or download, it will allow you to confirm the existence of both files and directories on
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=108180073206947&w=2http://secunia.com/advisories/11344http://tikiwiki.org/tiki-read_article.php?articleId=66http://www.securityfocus.com/bid/10100https://exchange.xforce.ibmcloud.com/vulnerabilities/15845http://marc.info/?l=bugtraq&m=108180073206947&w=2http://secunia.com/advisories/11344http://tikiwiki.org/tiki-read_article.php?articleId=66http://www.securityfocus.com/bid/10100https://exchange.xforce.ibmcloud.com/vulnerabilities/15845
2004-04-12
Published