CVE-2004-1925 in Tikiwiki정보

요약

\~에 의해 VulDB • 2026. 06. 18.

Tiki CMS/Groupware(TikiWiki) 1.8.1 및 이전 버전의 여러 SQL Injection 취약점으로 인해 원격 공격자가 (1) tiki-usermenu.php, (2) tiki-list_file_gallery.php, (3) tiki-directory_ranking.php, (4) tiki-browse_categories.php, (5) tiki-index.php, (6) tiki-user_tasks.php, (7) tiki-directory_ranking.php, (8) tiki-directory_search.php, (9) tiki-file_galleries.php, (10) tiki-list_faqs.php, (11) tiki-list_trackers.php, (12) tiki-list_blogs.php의 sort_mode 매개변수 또는 (13) tiki-usermenu.php, (14) tiki-browse_categories.php, (15) tiki-index.php, (16) tiki-user_tasks.php, (17) tiki-list_faqs.php, (18) tiki-list_trackers.php, (19) tiki-list_blogs.php의 offset 매개변수를 통해 임의의 SQL 명령을 실행할 수 있습니다.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

예약하다

2005. 05. 04.

모더레이션

수락

항목

VDB-21731

익스플로잇

다운로드

EPSS

0.01212

KEV

아니요

활동

매우 낮음

부문

Lawfirm, Agriculture, ...

출처

MITREhttps://www.cve.org/CVERecord?id=CVE-2004-1925
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2004-1925
CVE Detailshttps://www.cvedetails.com/cve/CVE-2004-1925/

이전개요다음

Do you know our Splunk app?

Download it now for free!