Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

15 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-6315

Malware in sbrugna...

5.4CVSS5.5AI score0.0086EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2020-8097

Malware in sbrugna...

6.1CVSS6.3AI score0.00685EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-6401

Malware in sbrugna...

8CVSS8AI score0.00495EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-6402

Malware in sbrugna...

8CVSS8AI score0.00511EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2018-13264

Malware in sbrugna...

8.8CVSS8.8AI score0.00995EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 8:4 a.m.4 views

CVE-2024-51509

Tiki through 27.0 allows users who have certain permissions to insert a "Modules" aka tiki-adminmodules.php stored XSS payload in the Name...

4.8CVSS5.8AI score0.00215EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 6:17 a.m.4 views

CVE-2024-51507

Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Name...

4.8CVSS5.8AI score0.00236EPSS
Exploits0References1
NVD
NVDadded 2025/04/09 2:15 a.m.29 views

CVE-2025-32461

wikipluginincludetpl in lib/wiki-plugins/wikipluginincludetpl.php in Tiki before 28.3 mishandles input to an eval. The fixed versions are 21.12, 24.8, 27.2, and 28.3...

9.9CVSS0.00778EPSS
Exploits1References8
CVE
CVEadded 2025/04/09 12:0 a.m.62 views

CVE-2025-32461

CVE-2025-32461 affects Tiki Wiki CMS Groupware prior to 28.3, via wikiplugin_includetpl.php in lib/wiki-plugins/wikiplugin_includetpl.php, which mishandles input to an eval and can enable remote code execution. Affected versions include 21.12-, 24.8-, 27.2-, and 28.0–28.3. Fixed versions are 21.1...

9.9CVSS7.1AI score0.00778EPSS
Exploits1References8
OSV
OSVadded 2024/10/28 11:15 p.m.5 views

CVE-2024-51509

Tiki through 27.0 allows users who have certain permissions to insert a "Modules" aka tiki-adminmodules.php stored XSS payload in the Name...

4.8CVSS5.8AI score
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/10/28 12:0 a.m.2 views

PT-2024-34670 · Tiki · Tiki

Name of the Vulnerable Software and Affected Versions: Tiki versions prior to 27.1 Description: The issue allows users with specific permissions to insert a stored XSS payload in the Index by creating or editing an external wiki. This can lead to the execution of malicious scripts. Recommendation...

4.8CVSS6AI score0.00236EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2023/01/14 12:0 a.m.7 views

CVE-2023-22850

Tiki before 24.1, when the Spreadsheets feature is enabled, allows lib/sheet/grid.php PHP Object Injection because of an unserialize call...

8.9AI score0.01168EPSS
Exploits3References2
Vulnrichment
Vulnrichmentadded 2023/01/14 12:0 a.m.4 views

CVE-2023-22853

Tiki before 24.1, when featurecreatewebhelp is enabled, allows lib/structures/structlib.php PHP Object Injection because of an eval...

9AI score0.00938EPSS
Exploits2References2
Positive Technologies
Positive Technologiesadded 2023/01/14 12:0 a.m.4 views

PT-2023-18726 · Tiki · Tiki

Name of the Vulnerable Software and Affected Versions: Tiki versions prior to 24.1 Description: The issue allows PHP Object Injection in lib/sheet/grid.php due to an unserialize call when the Spreadsheets feature is enabled. Recommendations: For versions prior to 24.1, update to version 24.1 or...

8.8CVSS8.8AI score0.01168EPSS
Exploits3References5
CNVD
CNVDadded 2018/08/14 12:0 a.m.1 views

Tiki cross-site scripting vulnerability (CNVD-2018-17537)

Tiki is a suite of open source content management and portal applications from the Tiki software community that can be used to create web applications, portals, corporate intranets, extranets, and more. A cross-site scripting vulnerability exists in Tiki versions prior to 18.2, 15.7, and 12.14. A...

5.4CVSS5.6AI score0.00678EPSS
Exploits0References1
Rows per page
Query Builder