Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sfu open journal systems vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-5894
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/ojs before 3.3.0-16.
Sfu Open Journal Systems
6.8
CVSSv2
CVE-2019-19909
An issue exists in Public Knowledge Project (PKP) pkp-lib prior to 3.1.2-2, as used in Open Journal Systems (OJS) prior to 3.1.2-2. Code injection can occur in the OJS report generator if an authenticated Journal Manager user visits a crafted URL, because unserialize is used.
Sfu Open Journal System
NA
CVE-2023-47271
PKP-WAL (aka PKP Web Application Library or pkp-lib) prior to 3.3.0-16, as used in Open Journal Systems (OJS) and other products, does not verify that the file named in an XML document (used for the native import/export plugin) is an image file, before trying to use it for an iss...
Sfu Pkp Web Application Library
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started