Lucene search
+L

4 matches found

NVD
NVD
added 2026/06/26 10:16 p.m.11 views

CVE-2026-50767

A stored cross-site scripting XSS vulnerability in the item type administration page of Koha Library Management System 0 through 25.11 versions allow an authenticated remote attacker with administrator privileges to inject arbitrary web scripts via the item type check-in message field checkinmsg...

5.4CVSS0.00196EPSS
Exploits1References1
CVE
CVE
added 2026/06/26 12:0 a.m.11 views

CVE-2026-50767

CVE-2026-50767 describes a stored XSS vulnerability in Koha Library Management System (up to version 25.11) where an authenticated administrator can inject arbitrary scripts through the item type check-in message field (checkinmsg). The issue requires administrator privileges and is triggered by ...

5.4CVSS5.8AI score0.00196EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/06/26 12:0 a.m.29 views

CVE-2026-50767

A stored cross-site scripting XSS vulnerability in the item type administration page of Koha Library Management System 0 through 25.11 versions allow an authenticated remote attacker with administrator privileges to inject arbitrary web scripts via the item type check-in message field checkinmsg...

0.00196EPSS
Exploits1References1
OSV
OSV
added 2026/06/26 12:0 a.m.3 views

CVE-2026-50767

A stored cross-site scripting XSS vulnerability in the item type administration page of Koha Library Management System 0 through 25.11 versions allow an authenticated remote attacker with administrator privileges to inject arbitrary web scripts via the item type check-in message field checkinmsg...

5.4CVSS5.9AI score0.00196EPSS
Exploits1References3
Rows per page
Query Builder