CVE-2005-3283
published 2005-10-23CVE-2005-3283: Cross-site scripting (XSS) vulnerability in TikiWiki before 1.9.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.85%
76.4th percentile
Cross-site scripting (XSS) vulnerability in TikiWiki before 1.9.1.1 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tiki | tikiwiki_cms_groupware | <= 1.9.1 | — |
| tiki | tikiwiki_cms_groupware | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://bugs.gentoo.org/show_bug.cgi?id=109858http://secunia.com/advisories/17279http://secunia.com/advisories/17363http://securitytracker.com/id?1015087http://sourceforge.net/project/shownotes.php?release_id=364457http://tikiwiki.org/art118http://www.gentoo.org/security/en/glsa/glsa-200510-23.xmlhttp://www.securityfocus.com/bid/15164http://www.vupen.com/english/advisories/2005/2176http://bugs.gentoo.org/show_bug.cgi?id=109858http://secunia.com/advisories/17279http://secunia.com/advisories/17363http://securitytracker.com/id?1015087http://sourceforge.net/project/shownotes.php?release_id=364457http://tikiwiki.org/art118http://www.gentoo.org/security/en/glsa/glsa-200510-23.xmlhttp://www.securityfocus.com/bid/15164http://www.vupen.com/english/advisories/2005/2176
2005-10-23
Published