Vulnerability Details CVE-2008-1047
Cross-site scripting (XSS) vulnerability in tiki-edit_article.php in TikiWiki before 1.9.10.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://dev.tikiwiki.org/tiki-view_tracker_item.php?itemId=1498
- http://secunia.com/advisories/29092
- http://tikiwiki.org/ReleaseNotes1910
- http://www.securityfocus.com/bid/27968
- http://www.vupen.com/english/advisories/2008/0661
- http://dev.tikiwiki.org/tiki-view_tracker_item.php?itemId=1498
- http://secunia.com/advisories/29092
- http://tikiwiki.org/ReleaseNotes1910
- http://www.securityfocus.com/bid/27968
- http://www.vupen.com/english/advisories/2008/0661
Products affected by CVE-2008-1047
-
cpe:2.3:a:tiki:tikiwiki_cms/groupware:1.6.1