TikiWiki 'tiki-orphan_pages.php' Cross Site Scripting Vulnerability Network Vulnerability

Summary

TikiWiki is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and to steal cookie-based authentication credentials. TikiWiki 2.2 through 3.0 beta1 are vulnerable.

Severity

Classification

CVE CVE-2009-1204

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Aardvark Topsites PHP 'index.php' Multiple Cross Site Scripting Vulnerabilities
Apache Solr Directory Traversal Vulnerability Jan-14
Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability
A Really Simple Chat Multiple XSS Vulnerabilities
AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities

Take action and discover your vulnerabilities