Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
oryginał ENCVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:NPkp Web Application Library
APPPkp< 3.3.0-16
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2023-5898HIGH8.8ten sam produkt
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
CVE-2023-5899HIGH8.8ten sam produkt
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
CVE-2023-4695HIGH8.1ten sam vendor
Use of Predictable Algorithm in Random Number Generator in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
CVE-2012-1467MEDIUM6.5ten sam vendor
Multiple directory traversal vulnerabilities in the iBrowser plugin library, as used in Open Journal Systems b...
CVE-2012-1468MEDIUM6.0ten sam vendor
Incomplete blacklist vulnerability in Open Journal Systems before 2.3.7 allows remote authenticated users with...