Tiki Tiki Wiki CMS/Groupware 12.12

CPE Details

Tiki Tiki Wiki CMS/Groupware 12.12
tiki
tikiwiki_cms\/groupware
12.12
2019-10-23
18h34 +00:00
2019-10-23
18h34 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:tiki:tikiwiki_cms\/groupware:12.12:*:*:*:*:*:*:*

Informations

Vendor

tiki

Product

tikiwiki_cms\/groupware

Version

12.12

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-8966 2020-04-01 20h18 +00:00 There is an Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in php webpages of Tiki-Wiki Groupware. Tiki-Wiki CMS all versions through 20.0 allows malicious users to cause the injection of malicious code fragments (scripts) into a legitimate web page.
6.5
Medium
CVE-2018-20719 2019-01-15 15h00 +00:00 In Tiki before 17.2, the user task component is vulnerable to a SQL Injection via the tiki-user_tasks.php show_history parameter.
8.8
High
CVE-2018-14849 2018-08-13 15h00 +00:00 Tiki before 18.2, 15.7 and 12.14 has XSS via link attributes, related to lib/core/WikiParser/OutputLink.php and lib/parser/parserlib.php.
5.4
Medium
CVE-2018-14850 2018-08-13 15h00 +00:00 Stored XSS vulnerabilities in Tiki before 18.2, 15.7 and 12.14 allow an authenticated user injecting JavaScript to gain administrator privileges if an administrator opens a wiki page and moves the mouse pointer over a modified link or thumb image.
5.4
Medium
CVE-2018-7290 2018-03-09 19h00 +00:00 Cross Site Scripting (XSS) exists in Tiki before 12.13, 15.6, 17.2, and 18.1.
5.4
Medium
CVE-2018-7188 2018-02-16 18h00 +00:00 An XSS vulnerability (via an SVG image) in Tiki before 18 allows an authenticated user to gain administrator privileges if an administrator opens a wiki page with a malicious SVG image, related to lib/filegals/filegallib.php.
5.4
Medium
CVE-2016-7394 2018-02-06 15h00 +00:00 tiki wiki cms groupware <=15.2 has a xss vulnerability, allow attackers steal user's cookie.
6.1
Medium