Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kitodo kitodo.presentation vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2022-24980
An issue exists in the Kitodo.Presentation (aka dif) extension prior to 2.3.2, 3.x prior to 3.2.3, and 3.3.x prior to 3.3.4 for TYPO3. A missing access check in an eID script allows an unauthenticated user to submit arbitrary URLs to this component. This results in SSRF, allowing...
Kitodo Kitodo.presentation
4.3
CVSSv2
CVE-2020-16095
The dlf (aka Kitodo.Presentation) extension prior to 3.1.2 for TYPO3 allows XSS.
Kitodo Kitodo.presentation
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started