VULHUB ™

Tikiwiki authentication may be bypassed by a malicious user. Upon entering a valid username,an arbitrary or null password, and clicking on the 'remember me' button, the application does not verify the login credentials properly and logs on that user.

Tikiwiki authentication may be bypassed by a malicious user. Upon entering a valid username,an arbitrary or null password, and clicking on the 'remember me' button, the application does not verify the login credentials properly and logs on that user.