Security Advisory

CVE-2019-15314

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-08-22 12:15:31

Last updated 2024-08-05 00:42:03

Assigner mitre

State PUBLISHED

Description

tiki/tiki-upload_file.php in Tiki 18.4 allows remote attackers to upload JavaScript code that is executed upon visiting a tiki/tiki-download_file.php?display&fileId= URI.

← Browse all CVEs View on cve.org ↗