Tiki Cross-Site Request Forgery Vulnerability (CNVD-2017-30070)
Tiki is a free, free, open source web application with rich built-in functionality. A cross-site request forgery vulnerability exists in the IMG element of Tiki, which can be exploited by an authenticated user to gain administrator privileges if the administrator opens a Wiki page with the IMG...