Lucene search
K

4 matches found

Prion
Prion
added 2018/10/18 9:29 p.m.16 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to 1 hijack the authentication of administrators for requests that create a user via a request to...

6CVSS6.9AI score0.02974EPSS
Exploits4References9Affected Software1
Cvelist
Cvelist
added 2018/10/18 8:0 p.m.30 views

CVE-2015-4631

Multiple cross-site scripting XSS vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to inject arbitrary web script or HTML via the 1 tag parameter to opac-search.pl; the 2 value parameter to...

5.8AI score0.03711EPSS
Exploits5References11
Prion
Prion
added 2017/07/21 2:29 p.m.17 views

Cross site scripting

Cross-site scripting XSS vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, and 3.20.x before 3.20.1 allows remote attackers to inject arbitrary web script or HTML via a crafted list name...

6.8CVSS6.1AI score0.0062EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2017/07/21 2:0 p.m.17 views

CVE-2015-4639

Cross-site scripting XSS vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, and 3.20.x before 3.20.1 allows remote attackers to inject arbitrary web script or HTML via a crafted list name...

7.2AI score0.0062EPSS
Exploits0References4
Rows per page
Query Builder