← CVECheck
HomeVulnerabilities

CVE-2004-1923 — MEDIUM severity vulnerability (Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remot)

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.

CVE IDCVE-2004-1923
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWECWE-200
StatusModified
Published2004-04-11
Last modified2026-04-16
DescriptionTiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →