Loading
Tiki through 27.0 allows users who have certain permissions to insert a "Create/Edit External Wiki" stored XSS payload in the Name.
Use CWE-79, Tiki vendor hub and Tiki product page to widen CVE-2024-51507 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2020-15906, CVE-2023-22850 and CVE-2023-22853 for nearby disclosures in the same product family.