CVE-2023-22851 Information

Description

Tiki before 24.2 allows lib/importer/tikiimporter_blog_wordpress.php PHP Object Injection by an admin because of an unserialize call.

Reference

https://tiki.org/articles https://karmainsecurity.com/KIS-2023-04