22 matches found
Exploit for CVE-2024-36058
Koha Library Software CVE ID: CVE-2024-36058 Produ...
EUVD-2023-49285
Malicious code in bioql PyPI...
EUVD-2023-49284
Malicious code in bioql PyPI...
CVE-2024-12915
CVE-2024-12915 is a Reflected Cross-Site Scripting vulnerability in Devinim Software Library Software. The issue arises from improper input neutralization during web page generation, affecting Library Software versions before 24.11.02. The practical impact is a reflected XSS vulnerability. Remedi...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44961
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44961
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44961
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component...
Unrestricted file upload
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44961
Koha Library Software (version 23.0.5.04 and earlier) is affected by a SQL Injection in the intranet/cgi-bin/cataloging/ysearch.pl component. The underlying issue allows a remote attacker to obtain sensitive information. The CVE is described across multiple sources as a SQL injection vulnerabilit...
CVE-2023-44961
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
CVE-2023-44961
SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component...
CVE-2023-44962
CVE-2023-44962 affects Koha Library Software versions 23.05.04 and earlier. The root cause is lack of filtering of the client-supplied path in the upload-cover-image.pl component, enabling an attacker to read arbitrary files. The PT-2023-5947 advisory adds detail: exploitation can involve uploadi...
CVE-2023-44962
File Upload vulnerability in Koha Library Software 23.05.04 and before allows a remote attacker to read arbitrary files via the upload-cover-image.pl component...
Koha Code Issue Vulnerability
Koha is a Koha organization's system for building websites for automated library management. A security vulnerability exists in Koha Library Software version 23.0.5.04 and earlier that could allow a remote attacker to read arbitrary files via the upload-cover-image.pl component...
Koha Library Software 18.1106000 Open Redirection
Exploit Title : Koha Library Software 18.1106000 Tracklinks Open Redirection Author Discovered By : KingSkrupellos Team : Cyberizm Digital Security Army Date : 19/06/2019 Vendor Homepage : koha.org - koha-community.org Software Download Link : download.koha-community.org...