Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200609-16
HistorySep 26, 2006 - 12:00 a.m.

Tikiwiki: Arbitrary command execution

2006-09-2600:00:00
Gentoo Foundation
security.gentoo.org
22

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.964 High

EPSS

Percentile

99.6%

JSON

Background

Tikiwiki is a web-based groupware and content management system, developed with PHP, ADOdb and Smarty.

Description

A vulnerability in jhot.php allows for an unrestricted file upload to the img/wiki/ directory. Additionally, an XSS exists in the highlight parameter of tiki-searchindex.php.

Impact

An attacker could execute arbitrary code with the rights of the user running the web server by uploading a file and executing it via a filepath parameter. The XSS could be exploited to inject and execute malicious script code or to steal cookie-based authentication credentials, potentially compromising the victim’s browser.

Workaround

There is no known workaround at this time.

Resolution

All Tikiwiki users should upgrade to the latest version:

 # emerge --sync
 # emerge --oneshot --verbose --ask ">=www-apps/tikiwiki-1.9.5"
OSVersionArchitecturePackageVersionFilename
Gentooanyallwww-apps/tikiwiki< 1.9.5UNKNOWN

Related

freebsd 1
nessus 3
openvas 5
cve 2
packetstorm 1
saint 4
cvelist 2
checkpoint_advisories 1
nvd 2
ubuntucve 1
freebsd
freebsd
tikiwiki -- multiple vulnerabilities
2006-08-21 00:00:00
nessus
nessus
GLSA-200609-16 : Tikiwiki: Arbitrary command execution
2006-09-27 00:00:00
FreeBSD : tikiwiki -- multiple vulnerabilities (e4c62abd-5065-11db-a5ae-00508d6a62df)
2006-10-02 00:00:00
TikiWiki jhot.php Arbitrary File Upload
2006-09-04 00:00:00
openvas
openvas
FreeBSD Ports: tikiwiki
2008-09-04 00:00:00
FreeBSD Ports: tikiwiki
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200609-16 (tikiwiki)
2008-09-24 00:00:00
cve
cve
CVE-2006-4602
2006-09-07 00:04:00
CVE-2006-4299
2006-08-23 01:04:00
packetstorm
packetstorm
TikiWiki jhot Remote Command Execution
2009-10-30 00:00:00
saint
saint
TikiWiki file upload vulnerability (jhot.php)
2006-09-08 00:00:00
TikiWiki file upload vulnerability (jhot.php)
2006-09-08 00:00:00
TikiWiki file upload vulnerability (jhot.php)
2006-09-08 00:00:00
cvelist
cvelist
CVE-2006-4602
2006-09-07 00:00:00
CVE-2006-4299
2006-08-23 01:00:00
checkpoint_advisories
checkpoint_advisories
TikiWiki jhot.php Script File Upload Security Bypass (CVE-2006-4602)
2010-01-24 00:00:00
nvd
nvd
CVE-2006-4602
2006-09-07 00:04:00
CVE-2006-4299
2006-08-23 01:04:00
ubuntucve
ubuntucve
CVE-2006-4299
2006-08-23 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.964 High

EPSS

Percentile

99.6%

JSON
Related for GLSA-200609-16
freebsd1nessus3openvas5cve2packetstorm1saint4cvelist2checkpoint_advisories1nvd2ubuntucve1