CVE-2023-22851

Description

Tiki before 24.2 allows lib/importer/tikiimporter_blog_wordpress.php PHP Object Injection by an admin because of an unserialize call.

Related CPE's

atikitiki********

References

https://tiki.org/articles

Vendor Advisory

https://karmainsecurity.com/KIS-2023-04

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io