Tiki Wiki CMS Groupware 7.0 has XSS via the GET “ajax” parameter to snarf_ajax.php.
[
{
"product": "Wiki CMS Groupware",
"vendor": "Tiki",
"versions": [
{
"status": "affected",
"version": "7.0"
}
]
}
]