4 matches found
CVE-1999-0450
In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl perl.exe...
TikiWiki Project 1.8 - tiki-list_blogs.php?offset SQL Injection
TikiWiki Project 1.8 - tiki-listblogs.php?offset SQL Injection source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path...
TikiWiki Project 1.8 - 'tiki-user_tasks.php?offset & sort_mode' SQL Injections
source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection,...
TikiWiki Project 1.8 - 'tiki-file_galleries.php?sort_mode' SQL Injection
source: https://www.securityfocus.com/bid/10100/info Multiple vulnerabilities have been identified in various modules of the application. These vulnerabilities may allow a remote attacker to carry out various attacks such as path disclosure, cross-site scripting, HTML injection, SQL injection,...