0.001 Low
EPSS
Percentile
24.9%
Tiki 17.1 allows upload of a .PNG file that actually has SVG content, leading to XSS.
github.com/TikiWiki/tiki-manager
nvd.nist.gov/vuln/detail/CVE-2018-7302
websecnerd.blogspot.in/2018/01/tiki-wiki-cms-groupware-17.html