Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2022-47854

Disclosure Date: January 31, 2023 (last updated February 24, 2025)
i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-11449

Disclosure Date: April 22, 2019 (last updated November 27, 2024)
I, Librarian 4.10 has XSS via the notes.php notes parameter.
0
0
Attacker Value
Unknown

CVE-2019-11428

Disclosure Date: April 22, 2019 (last updated November 27, 2024)
I, Librarian 4.10 has XSS via the export.php export_files parameter.
0
0
Attacker Value
Unknown

CVE-2019-11359

Disclosure Date: April 20, 2019 (last updated November 27, 2024)
Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter.
0
0