CVE-2024-47919

Name of the Vulnerable Software and Affected Versions Tiki Wiki CMS versions prior to 28

Description The issue is related to improper neutralization of special elements used in an OS command, also known as 'OS Command Injection'. This occurs when the software does not properly handle special elements in OS commands, potentially allowing attackers to execute arbitrary commands.

Recommendations For versions prior to 28, upgrade to version 28 as soon as possible to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the CMS to minimize the risk of exploitation.