Multiple Directory Traversal Vulnerabilities in Tikiwiki before 1.9.1

Multiple Directory Traversal Vulnerabilities in Tikiwiki before 1.9.1

CVE-2005-1925 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple directory traversal vulnerabilities in Tikiwiki before 1.9.1 allow remote attackers to read arbitrary files and execute commands via (1) the suck_url parameter to tiki-editpage.php or (2) language parameter to tiki-user_preferences.php.

Learn more about our User Device Pen Test.