Lucene search
GoogleOSV:CVE-2017-1000236HistoryNov 17, 2017 - 4:29 a.m.
CVE-2017-1000236
2017-11-1704:29:00
Google
osv.dev
5
I, Librarian version <=4.6 & 4.7 is vulnerable to Reflected Cross-Site Scripting in the temp.php resulting in an attacker being able to inject malicious client side scripting which will be executed in the browser of users if they visit the manipulated site.
| CPE | Name | Operator | Version |
|---|---|---|---|
| i-librarian | eq | 4.2 | |
| i-librarian | eq | 4.5 | |
| i-librarian | eq | 4.4 | |
| i-librarian | eq | 3.4.1 | |
| i-librarian | eq | 3.2.1 | |
| i-librarian | eq | 4.0 | |
| i-librarian | eq | 4.1 | |
| i-librarian | eq | 3.3 | |
| i-librarian | eq | 3.5 | |
| i-librarian | eq | 3.1 |
Related
nvd
nvd
CVE-2017-1000236
2017-11-17 04:29:00
prion
prion
Cross site scripting
2017-11-17 04:29:00
cvelist
cvelist
CVE-2017-1000236
2022-10-03 16:23:10
cve
cve
CVE-2017-1000236
2022-10-03 16:23:10