Arbitrary File Upload Vulnerability in Tiki CMS/Groupware (TikiWiki) 1.8.1 and Earlier

Arbitrary File Upload Vulnerability in Tiki CMS/Groupware (TikiWiki) 1.8.1 and Earlier

CVE-2004-1928 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The image upload feature in Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to upload and possibly execute arbitrary files via the img/wiki_up URL.

Learn more about our Cms Pen Testing.