CVE-2018-7302

CVE: CVE-2018-7302
Published: 2018-02-21T20:29Z
Description Language: en
Description: Tiki 17.1 allows upload of a .PNG file that actually has SVG content, leading to XSS.
References:
https://websecnerd.blogspot.in/2018/01/tiki-wiki-cms-groupware-17.html