CVE-2023-22853 Information

Description

Tiki before 24.1 when feature_create_webhelp is enabled allows lib/structures/structlib.php PHP Object Injection because of an eval.

Reference

https://tiki.org/articles https://karmainsecurity.com/KIS-2023-02