• caglararli@hotmail.com
  • 05386281520

CVE-2018-25101 | l2c2technologies Koha up to 20180108 opac-MARCdetail.pl biblionumber cross site scripting

Çağlar Arlı      -    96 Views

CVE-2018-25101 | l2c2technologies Koha up to 20180108 opac-MARCdetail.pl biblionumber cross site scripting

A vulnerability, which was classified as problematic, has been found in l2c2technologies Koha up to 20180108. This issue affects some unknown processing of the file /cgi-bin/koha/opac-MARCdetail.pl. The manipulation of the argument biblionumber with the input 2"><TEST> leads to cross site scripting. The identification of this vulnerability is CVE-2018-25101. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.