VYPR

Opac

by Opac Project

CVEs (2)

  • CVE-2024-48310HigJan 28, 2025
    risk 0.49cvss 7.5epss 0.01

    AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys to access the backend API or other sensitive information.

  • CVE-2015-3343Apr 21, 2015
    risk 0.00cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in the OPAC module before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of unspecified victims for requests that remove a mapping via unknown vectors.