CVE-2019-15314
CVE-2019-15314 affects Tiki Wiki CMS Groupware version 18.4, where the file tiki-upload_file.php allows remote attackers to upload JavaScript code that is executed when a user visits tiki-download_file.php?display&fileId= … URL. This represents a stored XSS-like vector via file upload, with impac...