Lucene search
K

CVE-2015-4631

🗓️ 18 Oct 2018 20:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 51 Views🌐 WEB

CVE-2015-4631 XSS vulnerabilities in Koha 3.

Related
Detection
Refs
Paths
NVD
Node
kohakohaRange3.14.003.14.16
OR
kohakohaRange3.16.003.16.12
OR
kohakohaRange3.18.03.18.8
OR
kohakohaRange3.20.003.20.1
ParameterPositionPathDescriptionCWE
directionquery param/cgi-bin/koha/opac-shelves.plReflective XSS in opac-shelves.pl via direction/display parametersCWE-79
displayquery param/cgi-bin/koha/opac-shelves.plReflective XSS in opac-shelves.pl via direction/display parametersCWE-79
addshelfquery param/cgi-bin/koha/opac-shelves.plStored XSS via addshelf parameter in opac-shelves.plCWE-79
tagquery param/cgi-bin/koha/opac-search.plReflective XSS via tag parameter in opac-search.plCWE-79
valuequery param/cgi-bin/koha/authorities/authorities-home.plReflective XSS via value parameter in authorities-home.plCWE-79
delayquery param/cgi-bin/koha/acqui/lateorders.plReflective XSS via delay parameter in acqui/lateorders.plCWE-79
authtypecodequery param/cgi-bin/koha/admin/auth_subfields_structure.plReflective XSS via authtypecode and tagfield in auth_subfields_structure.plCWE-79
tagfieldquery param/cgi-bin/koha/admin/auth_subfields_structure.plReflective XSS via authtypecode and tagfield in auth_subfields_structure.plCWE-79
tagfieldquery param/cgi-bin/koha/admin/marc_subfields_structure.plReflective XSS via tagfield in marc_subfields_structure.plCWE-79
limitquery param/cgi-bin/koha/catalogue/search.plReflective XSS via limit parameter in catalogue/search.plCWE-79
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 00:27Current
6.8Medium risk
Vulners AI Score6.8
CVSS 23.5
CVSS 35.4
EPSS0.03711
51