Vulnerabilities > Ziku

DATE CVE VULNERABILITY TITLE RISK
2019-11-19 CVE-2011-3352 Cross-site Scripting vulnerability in Ziku Zikula 1.3.0
Zikula 1.3.0 build #3168 and probably prior has XSS flaw due to improper sanitization of the 'themename' parameter by setting default, modifying and deleting themes.
network
ziku CWE-79
3.5