CVE-2012-5321: CVE-2012-5321

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-5321

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

tiki-featured_link.php in TikiWiki CMS/Groupware 8.3 allows remote attackers to load arbitrary web site pages into frames and conduct phishing attacks via the url parameter, aka "frame injection."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Tiki Wiki CMS Groupware ‘url’ 参数URI重定向漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Tiki Wiki CMS Groupware是Tiki软件社区的一套开源的内容管理和门户应用程序，它可用于创建Web应用程序、门户网站、企业内部网、外联网等。。 Tiki Wiki CMS Groupware 8.3版本中的tiki-featured_link.php中存在URI重定向漏洞，该漏洞源于应用程序对用户提供的输入未经充分过滤。攻击成功可能导致钓鱼攻击，也可能执行其他的攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-5321

#	POC Description	Source Link	Shenlong Link
1	TikiWiki CMS Groupware v8.3 - Open Redirect	https://github.com/Cappricio-Securities/CVE-2012-5321	POC Details
2	tiki-featured_link.php in TikiWiki CMS/Groupware 8.3 allows remote attackers to load arbitrary web site pages into frames and conduct phishing attacks via the url parameter, aka "frame injection	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2012/CVE-2012-5321.yaml	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-5321

Please Login to view more intelligence information

🔗 http://st2tea.blogspot.com/2012/02/tiki-wiki-cms-groupware-frame-injection.htmlx_refsource_MISC
🔗 http://secunia.com/advisories/48102third-party-advisoryx_refsource_SECUNIA
🔗 http://osvdb.org/79409vdb-entryx_refsource_OSVDB
🔗 http://www.securityfocus.com/bid/52079vdb-entryx_refsource_BID
🔗 http://www.securitytracker.com/id?1026708vdb-entryx_refsource_SECTRACK
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/73403vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2012-5321

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-5321

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2012-5321

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-5321

III. Intelligence Information for CVE-2012-5321

IV. Related Vulnerabilities

V. Comments for CVE-2012-5321

Leave a comment