3 matches found
Tiki Wiki CMS Groupware XSS Vulnerability
Tiki Wiki CMS Groupware is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2017-9305
lib/core/TikiFilter/PreventXss.php in Tiki Wiki CMS Groupware 16.2 allows remote attackers to bypass the XSS filter via padded zero characters, as demonstrated by an attack on tiki-batchsendnewsletter.php...
CVE-2017-9305
CVE-2017-9305 affects Tiki Wiki CMS Groupware 16.2, specifically the file lib/core/TikiFilter/PreventXss.php. The vulnerability allows remote attackers to bypass the XSS filter by exploiting padded zero characters, demonstrated on tiki-batch_send_newsletter.php. Per the sources, CVSS data indicat...