admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-01 11:11:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-243xx/CVE-2024-24336.json
cad-safe-bot db95377d9f Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00

20 lines
841 B
JSON
Raw Blame History

{
"id": "CVE-2024-24336",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-19T21:15:07.667",
"lastModified": "2024-03-20T13:00:16.367",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "A multiple Cross-site scripting (XSS) vulnerability in the '/members/moremember.pl', and \u2018/members/members-home.pl\u2019 endpoints within Koha Library Management System version 23.05.05 and earlier allows malicious staff users to carry out CSRF attacks, including unauthorized changes to usernames and passwords of users visiting the affected page, via the 'Circulation note' and \u2018Patrons Restriction\u2019 components."
}
],
"metrics": {},
"references": [
{
"url": "https://nitipoom-jar.github.io/CVE-2024-24336/",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink