Ibexa: >> Ez Platform Kernel >> 6.13.0 Security Vulnerabilities
An issue was discovered in eZ Platform Ibexa Kernel before 1.3.1.1. An XSS attack can occur because JavaScript code can be uploaded in a .html or .js file.
CVSS Score
6.1
EPSS Score
0.004
Published
2023-03-12
An issue was discovered in eZ Publish Ibexa Kernel before 7.5.15.1. The /user/sessions endpoint can be abused to determine account existence.
CVSS Score
5.3
EPSS Score
0.002
Published
2023-03-12