Unrated severityNVD Advisory· Published Apr 4, 2022· Updated Aug 3, 2024
CVE-2022-26616
CVE-2022-26616
Description
PKP Vendor Open Journal System v2.4.8 to v3.3.8 allows attackers to perform reflected cross-site scripting (XSS) attacks via crafted HTTP headers.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- PKP Vendor/Open Journal Systemdescription
- Range: >=2.4.8 <=3.3.8
Patches
Vulnerability mechanics
References
2- forum.pkp.sfu.ca/t/ojs-omp-ops-3-3-0-9-released/72236mitrex_refsource_MISC
- github.com/pkp/pkp-lib/issues/7649mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.