CVE-2018-7188

Published: 2018-02-16T18:29Z

Last Modified: 2024-11-21T04:11Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An XSS vulnerability (via an SVG image) in Tiki before 18 allows an authenticated user to gain administrator privileges if an administrator opens a wiki page with a malicious SVG image, related to lib/filegals/filegallib.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt