Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pkp pkp web application library vulnerabilities and exploits
(subscribe to this query)
8.2
CVSSv3
CVE-2023-5889
Insufficient Session Expiration in GitHub repository pkp/pkp-lib before 3.3.0-16.
Pkp Pkp Web Application Library
8.8
CVSSv3
CVE-2023-5898
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib before 3.3.0-16.
Pkp Pkp Web Application Library
8.8
CVSSv3
CVE-2023-5899
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib before 3.3.0-16.
Pkp Pkp Web Application Library
5.3
CVSSv3
CVE-2023-47271
PKP-WAL (aka PKP Web Application Library or pkp-lib) prior to 3.3.0-16, as used in Open Journal Systems (OJS) and other products, does not verify that the file named in an XML document (used for the native import/export plugin) is an image file, before trying to use it for an iss...
Sfu Pkp Web Application Library
5.4
CVSSv3
CVE-2023-5890
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib before 3.3.0-16.
Sfu Pkp Web Application Library
5.4
CVSSv3
CVE-2023-5891
Cross-site Scripting (XSS) - Reflected in GitHub repository pkp/pkp-lib before 3.3.0-16.
Sfu Pkp Web Application Library
5.4
CVSSv3
CVE-2023-5892
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib before 3.3.0-16.
Sfu Pkp Web Application Library
8.8
CVSSv3
CVE-2023-5893
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib before 3.3.0-16.
Sfu Pkp Web Application Library
5.4
CVSSv3
CVE-2023-5895
Cross-site Scripting (XSS) - DOM in GitHub repository pkp/pkp-lib before 3.3.0-16.
Sfu Pkp Web Application Library
5.4
CVSSv3
CVE-2023-5896
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib before 3.4.0-4.
Sfu Pkp Web Application Library
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »