3 matches found
CVE-2006-5702
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/tikiwiki/tikidblib.rb 2025-02-06 03:13:38+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:08:19+00:00| seen|...
CVE-2006-5702
Tikiwiki 1.9.5 allows remote attackers to obtain sensitive information MySQL username and password via an empty sortmode parameter in 1 tiki-listpages.php, 2 tiki-lastchanges.php, 3 messu-archive.php, 4 messu-mailbox.php, 5 messu-sent.php, 6 tiki-directoryaddsite.php, 7 tiki-directoryranking.php,...
CVE-2006-5702
TikiWiki 1.9.5 is affected by an information-disclosure vulnerability where an empty sort_mode parameter in multiple pages (e.g., tiki-lastchanges.php, tiki-listpages.php, tiki-forums.php, tiki-view_forum.php, tiki-manager pages) causes database credentials (MySQL username and password) to be exp...