CVE-2004-1923

Tiki CMS/Groupware < 1.8.1 - Exposure of Sensitive Information via Direct Request to Multiple Scripts

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2004-1923. PoCs published by JeiAr, GulfTech Security.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in various modules of an application, including path disclosure, XSS, SQL injection, directory traversal, and arbitrary file upload. It references specific parameters in 'tiki-browse_categories.php' but lacks executable exploit code.

Description

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.

Exploits (2)

exploitdb WRITEUP VERIFIED
by JeiAr · textwebappsphp
https://www.exploit-db.com/exploits/23952

The provided text describes multiple vulnerabilities in various modules of an application, including path disclosure, XSS, SQL injection, directory traversal, and arbitrary file upload. It references specific parameters in 'tiki-browse_categories.php' but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: TikiWiki (version not specified)
No auth needed
Prerequisites: Access to vulnerable TikiWiki instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP
by GulfTech Security · textwebappsphp
https://www.exploit-db.com/exploits/43809

This is a detailed technical writeup describing multiple vulnerabilities in TikiWiki CMS/Groupware, including path disclosure, XSS, SQL injection, code injection, directory traversal, and arbitrary file upload. It provides specific examples of vulnerable parameters and attack vectors but does not include functional exploit code.

Classification
Writeup 95%
Attack Type
Info Leak | Xss | Sqli | Other
Complexity
Moderate
Reliability
Reliable
Target: TikiWiki CMS/Groupware <= 1.8.1
No auth needed
Prerequisites: Access to vulnerable TikiWiki instance
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10100
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108180073206947&w=2
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11344
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15847

Scores

EPSS 0.0333
EPSS Percentile 87.0%

Details

CWE
CWE-200
Status published
Products (2)
tiki/tikiwiki_cms\/groupware 1.6.1
tiki/tikiwiki_cms\/groupware < 1.8.1
Published Apr 11, 2004
Tracked Since Feb 18, 2026