CVE-2012-5321

NUCLEI

TikiWiki CMS/Groupware 8.3 - Frame Injection via URL Parameter

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-5321. PoCs published by sonyy, Cappricio-Securities. A Nuclei detection template is also available.

AI-analyzed exploit summary The exploit describes a URI-redirection vulnerability in Tiki Wiki CMS Groupware due to improper input sanitization. An attacker can craft a malicious URL to redirect users to an arbitrary site, aiding in phishing attacks.

Description

tiki-featured_link.php in TikiWiki CMS/Groupware 8.3 allows remote attackers to load arbitrary web site pages into frames and conduct phishing attacks via the url parameter, aka "frame injection."

Exploits (2)

exploitdb WRITEUP VERIFIED

by sonyy · textwebappsphp

https://www.exploit-db.com/exploits/36848

View Code ZIP pw:eip

The exploit describes a URI-redirection vulnerability in Tiki Wiki CMS Groupware due to improper input sanitization. An attacker can craft a malicious URL to redirect users to an arbitrary site, aiding in phishing attacks.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Tiki Wiki CMS Groupware

No auth needed

Prerequisites: Access to the target application

MITRE ATT&CK

T1505 - Server Software Component

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec SCANNER

by Cappricio-Securities · poc

https://github.com/Cappricio-Securities/CVE-2012-5321

View Code ZIP pw:eip

This repository contains a Python-based scanner for detecting CVE-2012-5321, a vulnerability in TikiWiki. The tool checks for vulnerable endpoints and integrates with Telegram for notifications.

Classification

Scanner 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: TikiWiki

No auth needed

Prerequisites: Python3 · pip · target URLs

MITRE ATT&CK