TikiWiki Script Insertion Vulnerability - Exabytes Security Portal

Categories

Applications (151)
Blogs (3)
Content Management (101)
Customer Relationship (2)
Discussion Boards (19)
E-Commerce (8)
General Purpose Directories (1)
Image Galleries (15)
Mailing Lists (1)
Tips (3)
Vulnerabilities (249)
Access Bypass (42)
Cross Site Scripting (94)
Denial Of Service (2)
File Inclusion (40)
Information Disclosure (13)
Privilege Escalation (2)
Remote Command Execution (12)
Session Hijacking (1)
SQL Injection (84)

TikiWiki Script Insertion Vulnerability

Published by TL Guan March 20th, 2008 in Content Management and Cross Site Scripting.

Application: Tikiwiki
Affected Version: prior to 1.9.10.1.
Vendor’s URL: http://tikiwiki.org/
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Update to version 1.9.10.1.

Search

Subscribe

Entries RSS

Latest

Archives