Vulners
Lucene search
2 matches found
CVE-2024-46879
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
5.4CVSS0.00039EPSS
Exploits1References3
CVE-2024-46879
CVE-2024-46879 affects Tiki CMS version 21.2, specifically the tiki-admin_system.php endpoint. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability in the POST data field zipPath, allowing an attacker to inject and execute arbitrary JavaScript via a crafted payload, with potential ac...
5.4CVSS6.2AI score0.00039EPSS
Exploits1References3Affected Software1
20