What is the severity of CVE-2013-4714?

CVE-2013-4714 has a medium severity rating due to the potential for cross-site scripting attacks.

How do I fix CVE-2013-4714?

To fix CVE-2013-4714, upgrade Tiki Wiki CMS Groupware to version 6.13, 9.7, 10.4, or 11.1 or later.

Which versions are affected by CVE-2013-4714?

CVE-2013-4714 affects Tiki Wiki CMS Groupware versions prior to 6.13, 9.7, 10.4, and 11.1.

What type of vulnerability is CVE-2013-4714?

CVE-2013-4714 is a cross-site scripting (XSS) vulnerability that allows for arbitrary script injection.

Who can exploit CVE-2013-4714?

CVE-2013-4714 can be exploited by remote attackers targeting vulnerable installations of Tiki Wiki CMS Groupware.

Vulnerability/
CVE-2013-4714

medium

4.7

CWE

6/11/2013

17/5/2022

16/9/2024

CVE-2013-4714: XSS

First published: Wed Nov 06 2013(Updated: )

Cross-site scripting (XSS) vulnerability in Tiki Wiki CMS Groupware 6 LTS before 6.13LTS, 9 LTS before 9.7LTS, 10.x before 10.4, and 11.x before 11.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Credit: vultures@jpcert.or.jp

Affected Software	Affected Version	How to fix
composer/tikiwiki/tiki-manager	>=11.0<11.1	11.1
composer/tikiwiki/tiki-manager	>=10.0<10.4	10.4
composer/tikiwiki/tiki-manager	>=9.0<9.7	9.7
composer/tikiwiki/tiki-manager	>=6.0<6.13	6.13
Tiki Wiki CMS Groupware	=6.8
Tiki Wiki CMS Groupware	=6.9
Tiki Wiki CMS Groupware	=6.10
Tiki Wiki CMS Groupware	=6.11
Tiki Wiki CMS Groupware	=6.12
Tiki Wiki CMS Groupware	=9.0
Tiki Wiki CMS Groupware	=9.0-alpha
Tiki Wiki CMS Groupware	=9.0-beta
Tiki Wiki CMS Groupware	=9.0-beta2
Tiki Wiki CMS Groupware	=9.1
Tiki Wiki CMS Groupware	=9.2
Tiki Wiki CMS Groupware	=9.2-beta1
Tiki Wiki CMS Groupware	=9.3
Tiki Wiki CMS Groupware	=9.4
Tiki Wiki CMS Groupware	=9.5
Tiki Wiki CMS Groupware	=9.6
Tiki Wiki CMS Groupware	=10.0
Tiki Wiki CMS Groupware	=10.0-alpha
Tiki Wiki CMS Groupware	=10.0-beta
Tiki Wiki CMS Groupware	=10.1
Tiki Wiki CMS Groupware	=10.2
Tiki Wiki CMS Groupware	=10.3
Tiki Wiki CMS Groupware	=11.0
Tiki Wiki CMS Groupware	=11.0-beta

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-4714?
CVE-2013-4714 has a medium severity rating due to the potential for cross-site scripting attacks.
How do I fix CVE-2013-4714?
To fix CVE-2013-4714, upgrade Tiki Wiki CMS Groupware to version 6.13, 9.7, 10.4, or 11.1 or later.
Which versions are affected by CVE-2013-4714?
CVE-2013-4714 affects Tiki Wiki CMS Groupware versions prior to 6.13, 9.7, 10.4, and 11.1.
What type of vulnerability is CVE-2013-4714?
CVE-2013-4714 is a cross-site scripting (XSS) vulnerability that allows for arbitrary script injection.
Who can exploit CVE-2013-4714?
CVE-2013-4714 can be exploited by remote attackers targeting vulnerable installations of Tiki Wiki CMS Groupware.

collector/github-advisory-latest
alias/GHSA-h7jc-pg2r-mqj4
alias/CVE-2013-4714
collector/github-advisory
agent/author
agent/type
agent/references
agent/softwarecombine
agent/weakness
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/trending
agent/source
agent/tags
collector/nvd-cve
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/composer
vendor/tiki
canonical/tiki wiki cms groupware
version/tiki wiki cms groupware/6.8
version/tiki wiki cms groupware/6.9
version/tiki wiki cms groupware/6.10
version/tiki wiki cms groupware/6.11
version/tiki wiki cms groupware/6.12
version/tiki wiki cms groupware/9.0
version/tiki wiki cms groupware/9.0-alpha
version/tiki wiki cms groupware/9.0-beta
version/tiki wiki cms groupware/9.0-beta2
version/tiki wiki cms groupware/9.1
version/tiki wiki cms groupware/9.2
version/tiki wiki cms groupware/9.2-beta1
version/tiki wiki cms groupware/9.3
version/tiki wiki cms groupware/9.4
version/tiki wiki cms groupware/9.5
version/tiki wiki cms groupware/9.6
version/tiki wiki cms groupware/10.0
version/tiki wiki cms groupware/10.0-alpha
version/tiki wiki cms groupware/10.0-beta
version/tiki wiki cms groupware/10.1
version/tiki wiki cms groupware/10.2
version/tiki wiki cms groupware/10.3
version/tiki wiki cms groupware/11.0
version/tiki wiki cms groupware/11.0-beta