CVE-2023-22853

Description

Tiki before 24.1, when feature_create_webhelp is enabled, allows lib/structures/structlib.php PHP Object Injection because of an eval.

Related CPE's

atikitiki********

References

https://tiki.org/articles

Vendor Advisory

https://karmainsecurity.com/KIS-2023-02

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io