2 matches found
CVE-2007-4554
Cross-site scripting XSS vulnerability in tiki-remindpassword.php in Tikiwiki aka Tiki CMS/Groupware 1.9.7 allows remote attackers to inject arbitrary web script or HTML via the username parameter. NOTE: this issue might be related to CVE-2006-2635.7...
CVE-2006-2635
CVE-2006-2635 (and related entries) describe multiple cross-site scripting (XSS) vulnerabilities in Tikiwiki/Tiki CMS/Groupware 1.9.x. The enriched records from connected sources confirm concrete details: the issues affect tiki-remind_password.php and a wide set of other PHP scripts (e.g., tiki-l...