Vulnerabilities > Tiki > Tikiwiki CMS Groupware > 21.2

DATE CVE VULNERABILITY TITLE RISK
2020-12-11 CVE-2020-29254 Cross-Site Request Forgery (CSRF) vulnerability in Tiki Tikiwiki Cms/Groupware 21.2
TikiWiki 21.2 allows templates to be edited without CSRF protection.
network
low complexity
tiki CWE-352
8.8
8.8