CVE-2018-7188

2018-02-16T18:29:00
ID CVE-2018-7188
Type cve
Reporter cve@mitre.org
Modified 2018-03-13T15:01:00

Description

An XSS vulnerability (via an SVG image) in Tiki before 18 allows an authenticated user to gain administrator privileges if an administrator opens a wiki page with a malicious SVG image, related to lib/filegals/filegallib.php.