Unrated severityNVD Advisory· Published Mar 27, 2010· Updated Jun 16, 2026
CVE-2010-1133
CVE-2010-1133
Description
Multiple SQL injection vulnerabilities in TikiWiki CMS/Groupware 4.x before 4.2 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to (1) tiki-searchindex.php and (2) tiki-searchresults.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:tiki:tikiwiki_cms\/groupware:4.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:tiki:tikiwiki_cms\/groupware:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:tiki:tikiwiki_cms\/groupware:4.1:*:*:*:*:*:*:*
- (no CPE)range: >=4.0, <4.2
Patches
Vulnerability mechanics
References
7- info.tikiwiki.org/article86-Tiki-Announces-3-5-and-4-2-ReleasesnvdPatchVendor Advisory
- www.securityfocus.com/bid/38608nvdExploit
- secunia.com/advisories/38896nvdVendor Advisory
- tikiwiki.svn.sourceforge.net/viewvc/tikiwikinvdVendor Advisory
- osvdb.org/62800nvd
- tikiwiki.svn.sourceforge.net/viewvc/tikiwikinvd
- exchange.xforce.ibmcloud.com/vulnerabilities/56769nvd
News mentions
0No linked articles in our index yet.