[Japanese]

JVNDB-2006-000809

TikiWiki cross-site scripting vulnerability

Overview

TikiWiki, one of Wiki clones, contains a cross-site scripting vulnerability.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 2.6 (Low) [IPA Score]
  • Access Vector: Network
  • Access Complexity: High
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: Partial
  • Availability Impact: None
Affected Products


Tiki Software Community Association
  • TikiWiki version 1.9.5 and earlier

Impact

An arbitrary script may be executed on the user's web browser.
Solution

Vendor Information

Tiki Software Community Association
CWE (What is CWE?)

CVE (What is CVE?)

References

  1. JVN : JVN#38746816
Revision History

  • [2008/05/21]
      Web page published