Lucene search
IlizEXPLOITPACK:ECBE7F5D00B7627DF0C784272AD28131HistoryMar 12, 2009 - 12:00 a.m.
TikiWiki 2.23.0 - tiki-list_file_gallery.php Cross-Site Scripting
2009-03-1200:00:00
iliz
6
TikiWiki 2.23.0 - tiki-list_file_gallery.php Cross-Site Scripting
source: https://www.securityfocus.com/bid/34106/info
TikiWiki is prone to a cross-site scripting vulnerability.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and to steal cookie-based authentication credentials.
TikiWiki 2.2 through 3.0 beta1 are vulnerable.
http://www.example.com/tiki-list_file_gallery.php/>"><Script>alert(2)</scRipt>