cpe:/a:tiki:tikiwiki_cms%2fgroupware:3.0 cpe:/a:tiki:tikiwiki_cms%2fgroupware:3.1 cpe:/a:tiki:tikiwiki_cms%2fgroupware:3.2 cpe:/a:tiki:tikiwiki_cms%2fgroupware:3.3 cpe:/a:tiki:tikiwiki_cms%2fgroupware:3.4 CVE-2010-1134 2010-03-27T15:07:11.827-04:00 2017-08-16T21:32:15.977-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2010-03-29T19:42:00.000-04:00 BID 38608 SECUNIA 38882 OSVDB 62800 CONFIRM http://info.tikiwiki.org/article86-Tiki-Announces-3-5-and-4-2-Releases CONFIRM http://tikiwiki.svn.sourceforge.net/viewvc/tikiwiki?view=rev&revision=25429 XF tikiwiki-unknown-input-sql-injection(56769) SQL injection vulnerability in the _find function in searchlib.php in TikiWiki CMS/Groupware 3.x before 3.5 allows remote attackers to execute arbitrary SQL commands via the $searchDate variable.