cbcvebase.
CVE-2013-4714
published 2013-11-06

CVE-2013-4714: Cross-site scripting (XSS) vulnerability in Tiki Wiki CMS Groupware 6 LTS before 6.13LTS, 9 LTS before 9.7LTS, 10.x before 10.4, and 11.x before 11.1 allows…

PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
1.16%
63.1th percentile
Cross-site scripting (XSS) vulnerability in Tiki Wiki CMS Groupware 6 LTS before 6.13LTS, 9 LTS before 9.7LTS, 10.x before 10.4, and 11.x before 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected

21 ranges
VendorProductVersion rangeFixed in
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikitikiwiki_cms_groupware
tikiwikitiki-manager>= 10.0 < 10.410.4
tikiwikitiki-manager>= 11.0 < 11.111.1
tikiwikitiki-manager>= 6.0 < 6.136.13
tikiwikitiki-manager>= 9.0 < 9.79.7
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.