CVE-2004-1926

TikiWiki CMS/Groupware < 1.8.1 - Remote Code Execution via User Profile or Directory Fields

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2004-1926. PoCs published by JeiAr.

AI-analyzed exploit summary This is a vulnerability writeup describing multiple issues in an unspecified application, including path disclosure, XSS, SQL injection, and file upload vulnerabilities. No actual exploit code is provided.

Description

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to inject arbitrary code via the (1) Theme, (2) Country, (3) Real Name, or (4) Displayed time zone fields in a User Profile, or the (5) Name, (6) Description, (7) URL, or (8) Country fields in a Directory/Add Site operation.

Exploits (3)

exploitdb WRITEUP VERIFIED

by JeiAr · textwebappsphp

https://www.exploit-db.com/exploits/23950

View Code ZIP pw:eip

This is a vulnerability writeup describing multiple issues in an unspecified application, including path disclosure, XSS, SQL injection, and file upload vulnerabilities. No actual exploit code is provided.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unspecified application

No auth needed

Prerequisites: knowledge of vulnerable application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP VERIFIED

by JeiAr · textwebappsphp

https://www.exploit-db.com/exploits/23951

View Code ZIP pw:eip

The provided text is a vulnerability description for CVE-2004-1926, detailing multiple issues such as path disclosure, XSS, SQL injection, and directory traversal in an unspecified application. It lacks executable exploit code or technical proof-of-concept details.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Unspecified web application (likely a directory management system)

No auth needed

Prerequisites: Access to the vulnerable application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WRITEUP

webappsphp

https://www.exploit-db.com/exploits/43809

View Code ZIP pw:eip

This is a detailed technical writeup describing multiple vulnerabilities in TikiWiki CMS/Groupware, including path disclosure, XSS, SQL injection, code injection, directory traversal, and arbitrary file upload. It provides specific examples of vulnerable parameters and attack vectors.

Classification

Writeup 100%

Attack Type

Info Leak | Xss | Sqli | Other

Complexity

Moderate

Reliability

Reliable

Target: TikiWiki CMS/Groupware <= 1.8.1

No auth needed

Prerequisites: Access to the TikiWiki web interface

MITRE ATT&CK

T1003 - OS Credential Dumping T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1055 - Process Injection

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/10100

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/11344

Patch x_refsource_confirm

http://tikiwiki.org/tiki-read_article.php?articleId=66

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=108180073206947&w=2

Scores

EPSS 0.0747

EPSS Percentile 93.7%

Details

CWE

CWE-94

Status published

Products (2)

tiki/tikiwiki_cms\/groupware 1.6.1

tiki/tikiwiki_cms\/groupware < 1.8.1

Published Apr 11, 2004

Tracked Since Feb 18, 2026