Loading
Tiki before 24.1, when the Spreadsheets feature is enabled, allows lib/sheet/grid.php PHP Object Injection because of an unserialize call.
Use CWE-502, Tiki vendor hub and Tiki product page to widen CVE-2023-22850 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2020-15906, CVE-2023-22853 and CVE-2023-22851 for nearby disclosures in the same product family.