2025-03-19 00:00:00
mitre
PUBLISHED
A reflected cross-site scripting (XSS) vulnerability in AutoBib - Bibliographic collection management system 3.1.140 and earlier allows attackers to execute arbitrary Javascript in the context of a victims browser via injecting a crafted payload into the WCE=topFrame&WCU= parameter.