6 matches found
CVE-2024-46879
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
CVE-2024-46879
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
CVE-2024-46879
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
PT-2026-27196
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-admin system.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
CVE-2024-46879
Summary: CVE-2024-46879 affects Tiki 21.2, specifically the tiki-admin_system.php component, where a Reflected Cross-Site Scripting (XSS) flaw exists in the POST data parameter zipPath. The issue allows an attacker to inject and execute arbitrary JavaScript through a crafted payload, potentially ...
CVE-2007-6529
Multiple unspecified vulnerabilities in TikiWiki before 1.9.9 have unknown impact and attack vectors involving 1 tiki-editcss.php, 2 tiki-listgames.php, or 3 tiki-g-adminsharedsource.php...