2 matches found
CVE-2018-7188
An XSS vulnerability via an SVG image in Tiki before 18 allows an authenticated user to gain administrator privileges if an administrator opens a wiki page with a malicious SVG image, related to lib/filegals/filegallib.php...
CVE-2018-7188
CVE-2018-7188 describes an XSS vulnerability in Tiki Wiki CMS Groupware prior to version 18. An authenticated user can gain administrator privileges if an administrator opens a wiki page containing a malicious SVG image, related to lib/filegals/filegallib.php. The impact is elevated privileges fo...