LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

tikiwiki: arbitrary code execution

Package(s):tikiwiki CVE #(s):CVE-2007-5423
Created:October 22, 2007 Updated:November 15, 2007
Description: From the Gentoo advisory:

An attacker could execute arbitrary code with the rights of the user running the web server by passing a specially crafted parameter string to the tiki-graph_formula.php file.

Alerts:
Gentoo 200711-19 2007-11-14
Gentoo 200710-21 2007-10-20
(Log in to post comments)

tikiwiki: arbitrary code execution

Posted Oct 28, 2007 14:57 UTC (Sun) by kreutzm (guest, #4700) [Link] 

Tikiwiki was not part of a stable release of Debian.

tikiwiki: arbitrary code execution

Posted Dec 29, 2007 20:37 UTC (Sat) by floop (subscriber, #5889) [Link] 

just want to see my sub #

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds