Omeka S

omeka_s

Vendor: Omeka • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-4561 1Omeka 1Omeka S Nov 21, 2024 Aug 28, 2023 N/A· v4 4.8 MEDIUM· v3 N/A· v2 Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.4.
CVE-2023-4560 1Omeka 1Omeka S Nov 21, 2024 Aug 28, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Improper Authorization of Index Containing Sensitive Information in GitHub repository omeka/omeka-s prior to 4.0.4.
CVE-2023-4159 1Omeka 1Omeka S Nov 21, 2024 Aug 4, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3.
CVE-2023-4158 1Omeka 1Omeka S Nov 21, 2024 Aug 4, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.3.
CVE-2023-4157 1Omeka 1Omeka S Nov 21, 2024 Aug 4, 2023 N/A· v4 4.8 MEDIUM· v3 N/A· v2 CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3.