CVE-2018-25101 | l2c2technologies Koha up to 20180108 opac-MARCdetail.pl biblionumber cross site scripting

Inserito da Angelo Barbosa | Apr 20, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in l2c2technologies Koha up to 20180108. This issue affects some unknown processing of the file /cgi-bin/koha/opac-MARCdetail.pl. The manipulation of the argument biblionumber with the input 2"><TEST> leads to cross site scripting.

The identification of this vulnerability is CVE-2018-25101. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2018-25101 | l2c2technologies Koha up to 20180108 opac-MARCdetail.pl biblionumber cross site scripting

Post correlati

CVE-2024-7818 | Misiek Photo Album Plugin up to 1.4.3 on WordPress cross-site request forgery

CVE-2023-52264 | beesblog up to 1.6.1 post.php sharing_url cross site scripting

CVE-2023-50226 | Parallels Desktop link following (ZDI-23-1805)

CVE-2023-52798 | Linux Kernel up to 5.10.201/5.15.139/6.1.63/6.5.12/6.6.2 ath11k ath11k_mac_get_ar_by_pdev_id use after free