4 matches found
CVE-2023-5891 Cross-site Scripting (XSS) - Reflected in pkp/pkp-lib
Cross-site Scripting XSS - Reflected in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5891 Cross-site Scripting (XSS) - Reflected in pkp/pkp-lib
Cross-site Scripting XSS - Reflected in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5891 Cross-site Scripting (XSS) - Reflected in pkp/pkp-lib
Cross-site Scripting XSS - Reflected in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5891
CVE-2023-5891 is a Cross-site Scripting (XSS) vulnerability in PKP Web Application Library (PKP-lib) prior to version 3.3.0-16. The issue arises from unescaped user input in web responses, enabling reflected XSS attacks in the pkp/pkp-lib component. Affected software is PKP Web Application Librar...