Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 313339 (CVE-2010-1133) - <www-apps/tikiwiki-{3.5,4.2} SQL injection (CVE-2010-{1133,1134,1135,1136})
Summary: <www-apps/tikiwiki-{3.5,4.2} SQL injection (CVE-2010-{1133,1134,1135,1136})
Status: RESOLVED FIXED
Alias: CVE-2010-1133
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High minor
Assignee: Gentoo Security
URL: http://tikiwiki.svn.sourceforge.net/v...
Whiteboard: ~3 [noglsa]
Keywords:
Depends on: 381111
Blocks:
  Show dependency tree
 
Reported: 2010-04-06 03:56 UTC by Stefan Behte (RETIRED)
Modified: 2012-02-13 19:33 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Stefan Behte (RETIRED) gentoo-dev Security 2010-04-06 03:56:00 UTC 
CVE-2010-1133 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1133):
  Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x
  before 4.2 allow remote attackers to execute arbitrary SQL commands
  via unspecified vectors, probably related to (1) tiki-searchindex.php
  and (2) tiki-searchresults.php.
Comment 1 Stefan Behte (RETIRED) gentoo-dev Security 2010-04-06 04:04:39 UTC 
CVE-2010-1134 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1134):
  SQL injection vulnerability in the _find function in searchlib.php in
  TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to
  execute arbitrary SQL commands via the $searchDate variable.

CVE-2010-1135 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1135):
  The user_logout function in TikiWiki CMS/Groupware 4.x before 4.2
  does not properly delete user login cookies, which allows remote
  attackers to gain access via cookie reuse.

CVE-2010-1136 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1136):
  The Standard Remember method in TikiWiki CMS/Groupware 3.x before 3.5
  allows remote attackers to bypass access restrictions related to
  "persistent login," probably due to the generation of predictable
  cookies based on the IP address and User agent in userslib.php.
Comment 2 Stefan Behte (RETIRED) gentoo-dev Security 2010-04-11 14:01:49 UTC 
CVE-2010-1133 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1133):
  Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x
  before 4.2 allow remote attackers to execute arbitrary SQL commands
  via unspecified vectors, probably related to (1) tiki-searchindex.php
  and (2) tiki-searchresults.php.

CVE-2010-1134 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1134):
  SQL injection vulnerability in the _find function in searchlib.php in
  TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to
  execute arbitrary SQL commands via the $searchDate variable.

CVE-2010-1135 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1135):
  The user_logout function in TikiWiki CMS/Groupware 4.x before 4.2
  does not properly delete user login cookies, which allows remote
  attackers to gain access via cookie reuse.

CVE-2010-1136 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-1136):
  The Standard Remember method in TikiWiki CMS/Groupware 3.x before 3.5
  allows remote attackers to bypass access restrictions related to
  "persistent login," probably due to the generation of predictable
  cookies based on the IP address and User agent in userslib.php.
Comment 3 Alex Legler (RETIRED) archtester gentoo-dev Security 2012-02-13 19:33:21 UTC 
Package was removed.