Unrated severityNVD Advisory· Published Aug 30, 2021· Updated Sep 17, 2024
OpenKM Document Management Community vulnerable to Cross Site Scripting
CVE-2021-3628
Description
OpenKM Community Edition in its 6.3.10 version is vulnerable to authenticated Cross-site scripting (XSS). A remote attacker could exploit this vulnerability by injecting arbitrary code via de uuid parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 6.3.10
- OpenKM/Document Management Communityv5Range: 6.3.10
Patches
Vulnerability mechanics
References
3- docs.openkm.com/kcenter/view/okm-6.3-com/migration-guide.htmlmitrex_refsource_CONFIRM
- github.com/openkm/document-management-system/issues/278mitrex_refsource_CONFIRM
- www.incibe-cert.es/en/early-warning/security-advisories/openkm-document-management-community-vulnerable-cross-sitemitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.