16 matches found
CVE-2019-11428
I, Librarian 4.10 has XSS via the export.php exportfiles parameter...
EUVD-2019-3103
Malware in sbrugna...
EUVD-2019-3124
Malware in sbrugna...
CVE-2019-11359
Cross-site scripting XSS vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter...
CVE-2022-47854
i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php...
CVE-2022-47854
i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php...
CVE-2022-47854
i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php...
CVE-2019-11449
I, Librarian 4.10 has XSS via the notes.php notes parameter...
CVE-2019-11449
I, Librarian 4.10 has XSS via the notes.php notes parameter...
CVE-2019-11428
I, Librarian 4.10 has XSS via the export.php exportfiles parameter...
CVE-2019-11428
I, Librarian 4.10 has XSS via the export.php exportfiles parameter...
Design/Logic Flaw
I, Librarian 4.10 has XSS via the export.php exportfiles parameter...
CVE-2019-11428
I, Librarian 4.10 has XSS via the export.php exportfiles parameter...
CVE-2019-11428
CVE-2019-11428 affects I, Librarian 4.10 and is exposed via XSS in the export.php export_files parameter. Root cause: improper handling of the export_files input leading to cross-site scripting. Impact and exploitability: not detailed beyond XSS; no in-the-wild exploit information provided. Remed...
CVE-2019-11359
Cross-site scripting XSS vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter...
CVE-2019-11359
Summary of CVE-2019-11359 : A cross-site scripting (XSS) flaw affects I, Librarian version 4.10, exposed via the display.php file. The vulnerability is triggered by supplying a crafted value to the project parameter, enabling remote attackers to inject arbitrary web script or HTML. The PT-2019-12...