CVE-2012-5321

EUVD-2012-5244
tiki-featured_link.php in TikiWiki CMS/Groupware 8.3 allows remote attackers to load arbitrary web site pages into frames and conduct phishing attacks via the url parameter, aka "frame injection."
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
tikitikiwiki_cms\/groupware
8.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/79409
http://secunia.com/advisories/48102
http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.html
http://www.securityfocus.com/bid/52079
http://www.securitytracker.com/id?1026708
https://exchange.xforce.ibmcloud.com/vulnerabilities/73403
http://osvdb.org/79409
http://secunia.com/advisories/48102
http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.html
http://www.securityfocus.com/bid/52079
http://www.securitytracker.com/id?1026708
https://exchange.xforce.ibmcloud.com/vulnerabilities/73403