CVE-2010-1134

2010-03-27T19:07:00
ID CVE-2010-1134
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:32:00

Description

SQL injection vulnerability in the _find function in searchlib.php in TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to execute arbitrary SQL commands via the $searchDate variable.