Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| I-librarian |
|
| Scilico |
|
No data.
References
| Link | Providers |
|---|---|
| https://nitipoom-jar.github.io/CVE-2024-40500/ |
|
History
Wed, 21 Aug 2024 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Scilico
Scilico i-librarian |
|
| CPEs | cpe:2.3:a:scilico:i-librarian:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Scilico
Scilico i-librarian |
Mon, 12 Aug 2024 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
I-librarian
I-librarian i-librarian |
|
| Weaknesses | CWE-79 | |
| CPEs | cpe:2.3:a:i-librarian:i-librarian:*:*:*:*:*:*:*:* | |
| Vendors & Products |
I-librarian
I-librarian i-librarian |
|
| Metrics |
cvssV3_1
|
Mon, 12 Aug 2024 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-12T17:44:00.360Z
Reserved: 2024-07-05T00:00:00
Link: CVE-2024-40500
Vulnrichment
Updated: 2024-08-12T17:43:51.387Z
NVD
Status : Analyzed
Published: 2024-08-12T17:15:17.153
Modified: 2024-08-21T16:05:32.603
Link: CVE-2024-40500
Redhat
No data.