CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Evergreen-Ils: >> Evergreen >> 2.6.7 Security Vulnerabilities

CVE-2015-2203

Evergreen 2.5.9, 2.6.7, and 2.7.4 allows remote authenticated users with STAFF_LOGIN permission to obtain sensitive settings history information by leveraging listing of open-ils.pcrud as a controller in the IDL.

CVSS Score

6.5

EPSS Score

0.005

Published

2018-02-01

Page 1

Vulnerabilities

Vulnerable Software

Evergreen-Ils: >> Evergreen >> 2.6.7 Security Vulnerabilities

Products

Pricing

Contact Us