cpe:/a:tiki:tikiwiki_cms%2fgroupware:15.2 CVE-2016-7394 2018-02-06T11:29:00.573-05:00 2018-03-13T15:19:01.503-04:00 4.3 NETWORK MEDIUM NONE NONE PARTIAL NONE http://nvd.nist.gov 2018-02-23T13:31:45.067-05:00 CONFIRM https://sourceforge.net/p/tikiwiki/code/59653/ tiki wiki cms groupware <=15.2 has a xss vulnerability, allow attackers steal user's cookie.