Tiki Wiki CMS Groupware Cross-Site Scripting Vulnerability (CNVD-2017-16010)

Tiki Wiki CMS Groupware is a suite of open source content management and portal applications from the Tiki software community that can be used to create web applications, portals, corporate intranets, extranets, and more. A cross-site scripting vulnerability exists in the TikiFilter.php file in...

Cross site scripting

TikiFilter.php in Tiki Wiki CMS Groupware 12.x through 16.x does not properly validate the imgsize or lang parameter to prevent XSS...