PT-2023-22582 · Mkucej · I-Librarian-Free
Mkucej
·
Publicado
2023-05-31
·
Atualizado
2023-06-06
·
CVE-2023-3020
CVSS v3.1
9.0
Crítica
| Vetor | AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
mkucej/i-librarian-free versions prior to 5.10.4
Description
The issue is related to Cross-site Scripting (XSS) - Reflected. This means an attacker can inject malicious scripts into a website, which will be executed by the user's browser. No information is provided about the estimated number of potentially affected devices or real-world incidents.
Recommendations
For versions prior to 5.10.4, update to version 5.10.4 or later to resolve the issue.
Exploit
Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
I-Librarian-Free