2875 matches found
Cross site scripting
Cross-site Scripting in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Malicious code in bt8-wax-front-lib (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 94edc2702431bf0ca422456566133b260f48b21d456989d157837fbf5e4d80ba Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-5899
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5898
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5890
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5892
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5896
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.4.0-4...
CVE-2023-5889
Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5891
Cross-site Scripting XSS - Reflected in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5895
Cross-site Scripting XSS - DOM in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.4.0-4...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site scripting
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5904 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5904 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5904 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib
Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-5904
CVE-2023-5904 describes a stored cross-site scripting (XSS) vulnerability in the PKP Web Application Library (pkp-lib) prior to version 3.3.0-16. The issue affects the handling of journal-name data and can lead to script execution in a victim’s browser. Affected software: pkp-lib prior to 3.3.0-1...