6 matches found
Gentoo Security Advisory GLSA 200711-19 (tikiwiki)
The remote host is missing updates announced in advisory GLSA 200711-19. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
GLSA-200711-19 : TikiWiki: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200711-19 TikiWiki: Multiple vulnerabilities Stefan Esser reported that a previous vulnerability CVE-2007-5423, GLSA 200710-21 was not properly fixed in TikiWiki 1.9.8.1 CVE-2007-5682. The TikiWiki development team also added...
TikiWiki: Multiple vulnerabilities
Background TikiWiki is an open source content management system written in PHP. Description Stefan Esser reported that a previous vulnerability CVE-2007-5423, GLSA 200710-21 was not properly fixed in TikiWiki 1.9.8.1 CVE-2007-5682. The TikiWiki development team also added several checks to avoid...
CVE-2007-5682
Incomplete blacklist vulnerability in tiki-graphformula.php in TikiWiki before 1.9.8.2 allows remote attackers to execute arbitrary code by using variable functions and variable variables to write variables whose names match the whitelist, a different vulnerability than CVE-2007-5423...
CVE-2007-5682
Incomplete blacklist vulnerability in tiki-graphformula.php in TikiWiki before 1.9.8.2 allows remote attackers to execute arbitrary code by using variable functions and variable variables to write variables whose names match the whitelist, a different vulnerability than CVE-2007-5423...
CVE-2007-5682
CVE-2007-5682 is an incomplete blacklist vulnerability in tiki-graph_formula.php of TikiWiki up to versions before 1.9.8.2, enabling a remote attacker to execute arbitrary PHP code by abusing variable functions/variables to write names matching the whitelist. This is a separate issue from CVE-200...