Multiple vulnerabilities allow XSS and reading of arbitrary files
Bug #180702 reported by
William Grant
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
tikiwiki (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Feisty |
Fix Released
|
High
|
Emanuele Gentili | ||
Gutsy |
Fix Released
|
High
|
Emanuele Gentili |
Bug Description
Binary package hint: tikiwiki
Cross-site scripting (XSS) vulnerability in tiki-special_
Directory traversal vulnerability in tiki-listmovies.php in TikiWiki before 1.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) and modified filename in the movie parameter.
Multiple unspecified vulnerabilities in TikiWiki before 1.9.9 have unknown impact and attack vectors involving (1) tiki-edit_css.php, (2) tiki-list_
Feisty and Gutsy are affected.
Changed in tikiwiki: | |
status: | New → Invalid |
importance: | Undecided → High |
status: | New → Confirmed |
importance: | Undecided → High |
status: | New → Confirmed |
Changed in tikiwiki: | |
assignee: | nobody → emgent |
status: | Confirmed → In Progress |
Changed in tikiwiki: | |
assignee: | nobody → emgent |
status: | Confirmed → In Progress |
status: | Confirmed → In Progress |
To post a comment you must log in.
This bug was fixed in the package tikiwiki - 1.9.7+dfsg- 2ubuntu1. 2
--------------- dfsg-2ubuntu1. 2) gutsy-security; urgency=low
tikiwiki (1.9.7+
* SECURITY UPDATE: (LP: #180702) chars.php g-admin_ shared_ source. php. patches/ 91_CVE- 2007-6526_ CVE-2007- 6528_CVE- 2007-6529. dpatch
+ CVE 2007-6526: Cross-site scripting (XSS) vulnerability in tiki-special_
in TikiWiki before 1.9.9 allows remote attackers to inject arbitrary web script or
HTML via the area_name parameter.
+ CVE 2007-6528: Directory traversal vulnerability in tiki-listmovies.php in TikiWiki
before 1.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) and
modified filename in the movie parameter.
+ CVE 2007-6529: Multiple unspecified vulnerabilities in TikiWiki before 1.9.9 have
unknown impact and attack vectors involving tiki-edit_css.php,
tiki-
* debian/
- Applied patch by upstream
* References
- CVE-2007-6526
- CVE-2007-6528
- CVE-2007-6529
-- Emanuele Gentili <email address hidden> Sun, 17 Feb 2008 17:44:04 +0100