tiki-register.php in TikiWiki before 1.9.7 allows remote attackers to trigger "notification-spam" via certain vectors such as a comma-separated list of addresses in the email field, related to lack of "a minimal check on email."
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-11-29 02:28
Updated : 2024-02-28 11:01
NVD link : CVE-2006-6168
Mitre link : CVE-2006-6168
CVE.ORG link : CVE-2006-6168
JSON object : View
Products Affected
tiki
- tikiwiki_cms\/groupware
CWE
CWE-20
Improper Input Validation