Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.14 views

CVE-2023-47271

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

5.3CVSS6.9AI score0.00618EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2023/11/06 12:15 a.m.4 views

CVE-2023-47271

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

5.3CVSS6AI score0.00618EPSS
Exploits2References4
OSV
OSV
added 2023/11/06 12:15 a.m.24 views

CVE-2023-47271

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

5.3CVSS7.1AI score
Exploits0References3
Prion
Prion
added 2023/11/06 12:15 a.m.23 views

Design/Logic Flaw

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

5CVSS7.1AI score0.00618EPSS
Exploits2References3Affected Software1
CNNVD
CNNVD
added 2023/11/06 12:0 a.m.7 views

PKP Web Application Library Security Vulnerability

The PKP Web Application Library is a library shared by PKP's Open Journal System OJS, Open Conference System OCS, Open Monograph Press OMP, Open Preprint System OPS, and Open Harvester System OHS. A security vulnerability exists in the PKP Web Application Library PKP-WAL prior to version 3.3.0-16...

5.3CVSS6.8AI score0.00618EPSS
Exploits2References3
Cvelist
Cvelist
added 2023/11/05 12:0 a.m.41 views

CVE-2023-47271

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

5.6AI score0.00618EPSS
Exploits2References3
Rows per page
Query Builder