NVD

Id
57740  
Name
CVE-2007-5683  
Description
Multiple cross-site scripting (XSS) vulnerabilities in TikiWiki 1.9.8.1 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the username parameter to the password reminder page (tiki-remind_password.php), (2) IMG tags in wiki pages, and (3) the local_php parameter to db/tiki-db.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-10-26  
Modified Date
2012-10-24  
Seq
2007-5683  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
295482 57740 CVE-2007-5683 http://info.tikiwiki.org/tiki-read_article.php?articleId=15  View
295483 57740 CVE-2007-5683 20071025 TikiWiki <= 1.9.8.1 Cross Site Scripting / Local File Inclusion  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
57569 JVNDB-2007-006261 TikiWiki におけるクロスサイトスクリプティングの脆弱性 TikiWiki には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2007-5683 29038 CVE-2007-5683 57740 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-006261.html 2007-10-23 2012-12-20 View