How severe is CVE-2023-4157?

CVE-2023-4157 has a CVSS v3 score of 5.2 (MEDIUM).

CVE-2023-4157

Name: omeka_s
Author: omeka

5.2MEDIUM

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

Publicado: 8/4/2023Actualizado: 11/21/2024

Descripción

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

Análisis IAImpulsado por IA

Productos Afectados

omekaomeka_s

Referencias

https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
Patch
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014
ExploitPatchThird Party Advisory
https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
Patch
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014
ExploitPatchThird Party Advisory