CVE-2024-51509

Tiki through 27.0 allows users who have certain permissions to insert a "Modules" aka tiki-adminmodules.php stored XSS payload in the Name...

Nortel Networks SRG V16 admin_modules.php module Parameter Traversal Local File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execu...

CVE-2008-5943

Multiple directory traversal vulnerabilities in NavBoard 16 2.6.0 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the module parameter to 1 adminmodules.php and 2 modules.php...

CVE-2008-5943

NavBoard 16 (2.6.0) contains multiple directory traversal vulnerabilities enabling remote inclusion/execution of local files via … in the module parameter to admin_modules.php or modules.php. CVSS v2 base score 7.5 (HIGH); network attack vector, low difficulty, no authentication required, partial...

CVE-2006-2635

Multiple cross-site scripting XSS vulnerabilities in Tikiwiki aka Tiki CMS/Groupware 1.9.x allow remote attackers to inject arbitrary web script or HTML via malformed nested HTML tags such as "ipt" in 1 offset and 2 days parameters in a tiki-lastchanges.php, the 3 find and 4 offset parameters in ...

Multiple XSS Vulnerabilities in Tikiwiki 1.9.x

Multiple XSS Vulnerabilities in Tikiwiki 1.9.x Discovered by Blwood http://www.blwood.net Public ------------- Tiki-lastchanges http://www.site.com/tiki-lastchanges.php?days=3&offset=223E3Cscr3Cscript3Eipt3Ealert'Blwood'3C/scr3C/script3Eipt3E...