Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provided by Users.This issue affects Library Automation System: before...
6.5CVSS
6.5AI Score
0.001EPSS
Improper Neutralization of Input During Web Page Generation vulnerability in Yordam Information Technologies Library Automation System allows Stored XSS.This issue affects Library Automation System: before...
5.4CVSS
5.5AI Score
0.001EPSS
Improper Handling of Parameters vulnerability in Bordam Information Technologies Library Automation System allows Collect Data as Provided by Users.This issue affects Library Automation System: before...
6.5CVSS
6.5AI Score
0.001EPSS
Yordam Library Information Document Automation product before version 19.02 has an unauthenticated Information disclosure...
5.3CVSS
5.3AI Score
0.001EPSS
Yordam Library Information Document Automation product before version 19.02 has an unauthenticated reflected XSS...
4.7CVSS
4.7AI Score
0.001EPSS
University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version...
6.1CVSS
6AI Score
0.001EPSS
The library automation system product KOHA developed by Parantez Teknoloji before version 19.05.03 has an unauthenticated SQL Injection vulnerability. This has been fixed in the version...
9.4CVSS
9.7AI Score
0.002EPSS
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message....
jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source object contained an enumerable proto property, it could extend the native...