CVE-2018-14849
CVE-2018-14849 affects Tiki before 18.2, 15.7, and 12.14 with cross-site scripting via link attributes, related to lib/core/WikiParser/OutputLink.php and lib/parser/parserlib.php. The CVE is documented by NVD with CVSS-2/3 scores (base 3.5/5.4; LOW to MEDIUM), indicating a network-accessible vect...