CVE-2011-4454

Published: 2019-11-20T19:15Z

Last Modified: 2024-11-21T01:32Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Multiple cross-site scripting vulnerabilities in Tiki 8.0 RC1 and earlier allow remote attackers to inject arbitrary web script or HTML via the path info to (1) tiki-remind_password.php, (2) tiki-index.php, (3) tiki-login_scr.php, or (4) tiki-index. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt