CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sokrates: Security Vulnerabilities

CVE-2024-6050

Improper Neutralization of Input During Web Page Generation vulnerability in SOKRATES-software SOWA OPAC allows a Reflected Cross-Site Scripting (XSS). An attacker might trick somebody into using a crafted URL, which will cause a script to be run in user's browser. This issue affects SOWA OPAC software in versions from 4.0 before 4.9.10, from 5.0 before 6.2.12.

CVSS Score

6.1

EPSS Score

0.016

Published

2024-07-01

CVE-2020-28350

A Cross Site Scripting (XSS) vulnerability exists in OPAC in Sokrates SOWA SowaSQL through 5.6.1 via the sowacgi.php typ parameter.

CVSS Score

6.1

EPSS Score

0.002

Published

2020-11-19

Page 1

Vulnerabilities

Vulnerable Software

Sokrates: Security Vulnerabilities

Products

Pricing

Contact Us