VYPR

Koha

by Koha Library Management System

CVEs (1)

  • CVE-2024-24336HigMar 19, 2024
    risk 0.53cvss 8.1epss 0.00

    A multiple Cross-site scripting (XSS) vulnerability in the '/members/moremember.pl', and ‘/members/members-home.pl’ endpoints within Koha Library Management System version 23.05.05 and earlier allows malicious staff users to carry out CSRF attacks, including unauthorized…