Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.3.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:NOmeka S
APPOmeka< 4.0.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
XSS
CWE
Powiązane podatności
CVE-2023-4159HIGH8.8ten sam produkt
Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3.
CVE-2023-4560MEDIUM6.5ten sam produkt
Improper Authorization of Index Containing Sensitive Information in GitHub repository omeka/omeka-s prior to 4...
CVE-2023-4561MEDIUM4.8ten sam produkt
Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.4.
CVE-2023-4157MEDIUM5.2ten sam produkt
CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in G...
CVE-2023-3980MEDIUM4.8ten sam vendor
Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.2.