TikiWiki Tiki-error.php XSS Network Vulnerability

Summary

The remote host is running TikiWiki, a content management system written in PHP. The remote version of this software is vulnerable to cross-site scripting attacks in tiki-error.php script due to a lack of user input sanitization.

Solution

Upgraded to version 1.7.8 or newer.

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Afian 'includer.php' Directory Traversal Vulnerability
Apache Commons Daemon 'jsvc' Information Disclosure Vulnerability
aeNovo Database Content Disclosure Vulnerability
Admidio get_file.php Remote File Disclosure Vulnerability
Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability

TikiWiki tiki-error.php XSS

Take action and discover your vulnerabilities