← back
CVE-2006-5702

CVE-2006-5702

EPSS 53.1%
Tikiwiki 1.9.5 allows remote attackers to obtain sensitive information (MySQL username and password) via an empty sort_mode parameter in (1) tiki-listpages.php, (2) tiki-lastchanges.php, (3) messu-archive.php, (4) messu-mailbox.php, (5) messu-sent.php, (6) tiki-directory_add_site.php, (7) tiki-directory_ranking.php, (8) tiki-directory_search.php, (9) tiki-forums.php, (10) tiki-view_forum.php, (11) tiki-friends.php, (12) tiki-list_blogs.php, (13) tiki-list_faqs.php, (14) tiki-list_trackers.php, (15) tiki-list_users.php, (16) tiki-my_tiki.php, (17) tiki-notepad_list.php, (18) tiki-orphan_pages.php, (19) tiki-shoutbox.php, (20) tiki-usermenu.php, and (21) tiki-webmail_contacts.php, which reveal the information in certain database error messages.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/2701unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22678http://secunia.com/advisories/23039http://security.gentoo.org/glsa/glsa-200611-11.xmlhttp://securityreason.com/securityalert/1816https://exchange.xforce.ibmcloud.com/vulnerabilities/29960http://www.securityfocus.com/archive/1/450268/100/0/threadedhttp://www.securityfocus.com/bid/20858http://www.vupen.com/english/advisories/2006/4316