2 matches found
PT-2023-32400 · Pkp · Pkp-Lib
Name of the Vulnerable Software and Affected Versions: pkp/pkp-lib versions prior to 3.3.0-16 Description: The issue is related to Cross-Site Request Forgery CSRF in the GitHub repository pkp/pkp-lib. Recommendations: For versions prior to 3.3.0-16, update to version 3.3.0-16 or later to resolve...
PT-2021-22860 · Cobbler +2 · Cobbler +2
Name of the Vulnerable Software and Affected Versions: Cobbler versions prior to 3.3.0 Description: The issue allows arbitrary file write operations via upload log data. Recommendations: For versions prior to 3.3.0, update to version 3.3.0 or later to resolve the issue...