CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-4157

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.0%

CVSS Severity

CVSS v3 Score 5.2

References

https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014
https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014

Products affected by CVE-2023-4157

Omeka » Omeka S » Version: Any

cpe:2.3:a:omeka:omeka_s:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4157

Products

Pricing

Contact Us