TotalChoice Hosting Family Forums > Tikiwiki Multiple Vulnerabilities

Full Version: Tikiwiki Multiple Vulnerabilities

TotalChoice Hosting Family Forums > TotalChoice Hosting General Support > Security Discussions > Software/Scripts/Other Alerts

TCH-Thomas

Dec 25 2007, 03:39 AM

From: Secunia
secunia.com/advisories/28225/

Rating: Moderately critical

Description:
Some vulnerabilities have been reported in TikiWiki, where some have unknown impacts and others can be exploited by malicious people to conduct cross-site scripting attacks.

1) Input passed into the "movies" parameter in tiki-listmovies.php is not properly sanitised before being used, which can be exploited to conduct directory traversal attacks.

2) Input passed to the "area_name" parameter in tiki-special_chars.php is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.

3) Certain unspecified vulnerabilities exist in tiki-edit_css.php, tiki-list_games.php, and tiki-g-admin_shared_source.php. More information is currently not available.

Solution:
Update to version 1.9.9.

As a workaround, disable the "edit css", "games", and "galaxia" feature and delte tiki-listmovies.php and tiki-special_chars.php.

TCH-Bruce

Dec 25 2007, 09:53 AM

Thanks Thomas

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.