How severe is CVE-2023-4157?

CVE-2023-4157 has a CVSS v3 score of 5.2 (MEDIUM).

CVE-2023-4157

Name: omeka_s
Author: omeka

5.2MEDIUM

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

发布于: 8/4/2023更新于: 11/21/2024

描述

CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.

AI分析AI驱动

受影响产品

omekaomeka_s

参考资料

https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
Patch
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014
ExploitPatchThird Party Advisory
https://github.com/omeka/omeka-s/commit/8b72619d9731b32dd21ab6dcaa01ccc3bbf0db63
Patch
https://huntr.dev/bounties/abc3521b-1238-4c4e-97f1-2957db670014
ExploitPatchThird Party Advisory