CVE-2004-1924

Name of the Vulnerable Software and Affected Versions Tiki CMS/Groupware (TikiWiki) versions 1.8.1 and earlier

Description The issue allows remote attackers to inject arbitrary web script or HTML via various parameters in different PHP files, including the theme parameter to "tiki-switch theme.php", find and priority parameters to "messu-mailbox.php", flag, priority, flagval, sort mode, or find parameters to "messu-read.php", articleId parameter to "tiki-read article.php" and "tiki-print article.php", parentId parameter to "tiki-browse categories.php", comments threshold parameter to "tiki-index.php", galleryId parameter to "tiki-list file gallery.php" and "tiki-upload file.php", faqId parameter to "tiki-view faq.php", chartId parameter to "tiki-view chart.php", or surveyId parameter to "tiki-survey stats survey.php".

Recommendations For Tiki CMS/Groupware (TikiWiki) versions 1.8.1 and earlier, consider disabling access to the vulnerable parameters, such as theme, find, priority, flag, flagval, sort mode, articleId, parentId, comments threshold, galleryId, faqId, chartId, and surveyId, in the respective PHP files until a patch is available. Restrict access to the affected PHP files, including "tiki-switch theme.php", "messu-mailbox.php", "messu-read.php", "tiki-read article.php", "tiki-print article.php", "tiki-browse categories.php", "tiki-index.php", "tiki-list file gallery.php", "tiki-upload file.php", "tiki-view faq.php", "tiki-view chart.php", and "tiki-survey stats survey.php", to minimize the risk of exploitation.