HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2023-4159

CVSS 8.8v3.1pub. 2023-08-04upd. 2024-11-21

Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Omeka S

    APP
    Omeka
    < 4.0.3
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-4560MEDIUM6.5ten sam produkt

Improper Authorization of Index Containing Sensitive Information in GitHub repository omeka/omeka-s prior to 4...

CVE-2023-4561MEDIUM4.8ten sam produkt

Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.4.

CVE-2023-4157MEDIUM5.2ten sam produkt

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in G...

CVE-2023-4158MEDIUM5.4ten sam produkt

Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.3.

CVE-2023-3980MEDIUM4.8ten sam vendor

Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.2.

CVE-2023-4159 β€” Omeka β€” Omeka S β€” HIGH β€” CVSS 8.8 | CVEbaza.pl