VYPR

Omeka

by Omeka

Source repositories

CVEs (11)

  • CVE-2023-4157MedAug 4, 2023
    risk 0.27cvss 5.2epss 0.00

    CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

  • CVE-2014-5100Jul 25, 2014
    risk 0.03cvss epss 0.02

    Multiple cross-site request forgery (CSRF) vulnerabilities in Omeka before 2.2.1 allow remote attackers to hijack the authentication of administrators for requests that (1) add a new super user account via a request to admin/users/add, (2) insert cross-site scripting (XSS)…

  • CVE-2023-4561MedAug 28, 2023
    risk 0.00cvss 4.8epss 0.00

    Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.4.

  • CVE-2023-4560MedAug 28, 2023
    risk 0.00cvss 6.5epss 0.01

    Improper Authorization of Index Containing Sensitive Information in GitHub repository omeka/omeka-s prior to 4.0.4.

  • CVE-2023-4159HigAug 4, 2023
    risk 0.00cvss 8.8epss 0.01

    Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3.

  • CVE-2023-4158MedAug 4, 2023
    risk 0.00cvss 5.4epss 0.00

    Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.3.

  • CVE-2023-3982MedJul 27, 2023
    risk 0.00cvss 4.8epss 0.00

    Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.2.

  • CVE-2023-3981MedJul 27, 2023
    risk 0.00cvss 4.9epss 0.01

    Server-Side Request Forgery (SSRF) in GitHub repository omeka/omeka-s prior to 4.0.2.

  • CVE-2023-3980MedJul 27, 2023
    risk 0.00cvss 4.8epss 0.00

    Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.2.

  • CVE-2021-26799MedJul 23, 2021
    risk 0.00cvss 6.1epss 0.01

    Cross Site Scripting (XSS) vulnerability in admin/files/edit in Omeka Classic <=2.7 allows remote attackers to inject arbitrary web script or HTML.

  • CVE-2018-13423MedJul 7, 2018
    risk 0.00cvss 6.1epss 0.01

    admin/themes/default/items/tag-form.php in Omeka before 2.6.1 allows XSS by adding or editing a tag.