2 matches found
CVE-2023-5904 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5904
CVE-2023-5904 describes a stored cross-site scripting (XSS) vulnerability in the PKP Web Application Library (pkp-lib) prior to version 3.3.0-16. The issue affects the handling of journal-name data and can lead to script execution in a victim’s browser. Affected software: pkp-lib prior to 3.3.0-1...