Cross-site scripting (XSS) vulnerability in Tiki Wiki CMS Groupware 6 LTS before 6.13LTS, 9 LTS before 9.7LTS, 10.x before 10.4, and 11.x before 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:56
Type | Values Removed | Values Added |
---|---|---|
References | () http://info.tiki.org/article221-New-Versions-of-all-supported-versions-of-Tiki-Wiki-CMS-Groupware - | |
References | () http://jvn.jp/en/jp/JVN81813850/index.html - | |
References | () http://jvndb.jvn.jp/jvndb/JVNDB-2013-000099 - |
Information
Published : 2013-11-06 15:55
Updated : 2024-11-21 01:56
NVD link : CVE-2013-4714
Mitre link : CVE-2013-4714
CVE.ORG link : CVE-2013-4714
JSON object : View
Products Affected
tiki
- tikiwiki_cms\/groupware
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')