CVE-2023-29014
CVE-2023-29014 describes a reflected cross-site scripting vulnerability in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could lure a user to a crafted link, causing malicious script execution in the browser. Multiple connected records confirm the issue...