Michael Davey

**Name of the Vulnerable Software and Affected Versions** TikiWiki versions prior to 1.9.1.1 **Description** A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML. **Recommendations** For versions prior to 1.9.1.1, update to version 1.9.1.1 or later to resolve the issue.