Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-5654

Malware in sbrugna...

7.5CVSS6.2AI score0.02579EPSS
Exploits0References6
Circl
Circl
added 2010/09/20 12:0 a.m.16 views

CVE-2007-5423

creationtimestamp| type| source ---|---|--- 2010-09-20 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16911 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/tikiwikigraphformulaexec.rb 2025-02-06 03:13:38+00:0...

7.5CVSS5.7AI score0.76661EPSS
Exploits6References2
Packet Storm
Packet Storm
added 2009/10/30 12:0 a.m.105 views

TikiWiki tiki-graph_formula Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'TikiWiki...

7.5CVSS6.4AI score0.76661EPSS
Exploits6
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.30 views

Gentoo Security Advisory GLSA 200711-19 (tikiwiki)

The remote host is missing updates announced in advisory GLSA 200711-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.2AI score0.76661EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2007/11/15 12:0 a.m.28 views

GLSA-200711-19 : TikiWiki: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200711-19 TikiWiki: Multiple vulnerabilities Stefan Esser reported that a previous vulnerability CVE-2007-5423, GLSA 200710-21 was not properly fixed in TikiWiki 1.9.8.1 CVE-2007-5682. The TikiWiki development team also added...

7.5CVSS6AI score0.76661EPSS
Exploits6References4
Gentoo Linux
Gentoo Linux
added 2007/11/14 12:0 a.m.44 views

TikiWiki: Multiple vulnerabilities

Background TikiWiki is an open source content management system written in PHP. Description Stefan Esser reported that a previous vulnerability CVE-2007-5423, GLSA 200710-21 was not properly fixed in TikiWiki 1.9.8.1 CVE-2007-5682. The TikiWiki development team also added several checks to avoid...

7.5CVSS7AI score0.76661EPSS
Exploits6
NVD
NVD
added 2007/10/12 11:17 p.m.28 views

CVE-2007-5423

tiki-graphformula.php in TikiWiki 1.9.8 allows remote attackers to execute arbitrary code via PHP sequences in the f array parameter, which are processed by createfunction...

7.5CVSS7.5AI score0.76661EPSS
Exploits6References15
canvas
canvas
added 2007/10/12 11:17 p.m.64 views

Immunity Canvas: TIKIWIKI_EXEC

Name| tikiwikiexec ---|--- CVE| CVE-2007-5423 Exploit Pack| CANVAS Description| TikiWiki function create exploit Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: Tikiwiki CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5423 CVE Name: CVE-2007-5423...

7.5CVSS0.6AI score0.76661EPSS
Exploits6
CVE
CVE
added 2007/10/12 11:0 p.m.143 views

CVE-2007-5423

Summary: CVE-2007-5423 affects TikiWiki up to version 1.9.8, where tiki-graph_formula.php unsafely processes input in the f array via create_function(), enabling remote PHP code execution with the web server’s privileges. This is evidenced by multiple public advisories and exploit references (Met...

7.5CVSS7.4AI score0.76661EPSS
Exploits6References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/10/11 12:0 a.m.98 views

TikiWiki tiki-graph_formula.php f Parameter Arbitrary Command Execution

The remote host is running TikiWiki, an open source wiki application written in PHP. The version of TikiWiki on the remote host fails to sanitize input to the 'f' parameter of the 'tiki-graphformula.php' script before using it as a function call. Regardless of PHP's 'registerglobals' setting, an...

7.5CVSS6AI score0.76661EPSS
Exploits6References3
Rows per page
Query Builder