CVE-2016-9889

Some forms with the parameter geozoomleveltofoundlocation in Tiki Wiki CMS 12.x before 12.10 LTS, 15.x before 15.3 LTS, and 16.x before 16.1 don't have the input sanitized, related to tiki-setup.php and articleimage.php. The impact is XSS...

CVE-2016-9889

Tiki Wiki CMS Groupware is affected by a cross-site scripting vulnerability in forms that use the geo_zoomlevel_to_found_location parameter. The issue arises from unsanitized input in tiki-setup.php and article_image.php on versions 12.x prior to 12.10 LTS, 15.x prior to 15.3 LTS, and 16.x prior ...