Security Advisory

CVE-2015-4639

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-21 14:00:00

Last updated 2024-08-06 06:18:12

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in opac-addbybiblionumber.pl in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, and 3.20.x before 3.20.1 allows remote attackers to inject arbitrary web script or HTML via a crafted list name.

← Browse all CVEs View on cve.org ↗