Lucene search
K

27 matches found

OSV
OSV
added 2023/04/07 7:22 p.m.71 views

GHSA-7V7G-9VX6-VCG2 Goobi viewer Core Reflected Cross-Site Scripting Vulnerability Using LOGID Parameter

Impact A reflected cross-site scripting vulnerability has been identified in Goobi viewer core when evaluating the LOGID parameter. An attacker could trick a user into following a specially crafted link to a Goobi viewer installation, resulting in the execution of malicious script code in the...

6.1CVSS6.1AI score0.00443EPSS
Exploits0References4
Prion
Prion
added 2023/04/06 8:15 p.m.12 views

Cross site scripting

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. A reflected cross-site scripting vulnerability has been identified in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could trick a user into following ...

5.8CVSS6AI score0.00443EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/04/06 7:3 p.m.39 views

CVE-2023-29014 Goobi viewer Core Reflected Cross-Site Scripting Vulnerability Using LOGID Parameter

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. A reflected cross-site scripting vulnerability has been identified in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could trick a user into following ...

6.1CVSS6.3AI score0.00443EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/04/06 7:3 p.m.5 views

CVE-2023-29014 Goobi viewer Core Reflected Cross-Site Scripting Vulnerability Using LOGID Parameter

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. A reflected cross-site scripting vulnerability has been identified in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could trick a user into following ...

6.1CVSS6.1AI score0.00443EPSS
Exploits0References2
CVE
CVE
added 2023/04/06 7:3 p.m.74 views

CVE-2023-29014

CVE-2023-29014 describes a reflected cross-site scripting vulnerability in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could lure a user to a crafted link, causing malicious script execution in the browser. Multiple connected records confirm the issue...

6.1CVSS6.1AI score0.00443EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/04/06 7:3 p.m.24 views

CVE-2023-29014 Goobi viewer Core Reflected Cross-Site Scripting Vulnerability Using LOGID Parameter

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. A reflected cross-site scripting vulnerability has been identified in Goobi viewer core prior to version 23.03 when evaluating the LOGID parameter. An attacker could trick a user into following ...

6.1CVSS6AI score0.00443EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.26 views

Fedora 28 : mediawiki (2018-e022ecbc52)

https://www.mediawiki.org/wiki/Releasenotes/1.29MediaWiki1.29.3 - T169545, CVE-2018-0503 SECURITY: $wgRateLimits entry for 'user' overrides 'newbie'. - T194605, CVE-2018-0505 SECURITY: BotPasswords can bypass CentralAuth's account lock. - T180551 Fix LanguageSrTest for language converter - T18055...

6.5CVSS6AI score0.02797EPSS
Exploits1References4
Rows per page
Query Builder