Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown
CVE-2023-24086
Disclosure Date: February 13, 2023 (last updated October 08, 2023)
SLIMS v9.5.2 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /customs/loan_by_class.php?reportView.
0
Attacker Value
Unknown
CVE-2018-12658
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
Reflected Cross-Site Scripting (XSS) exists in the Stock Take module in SLiMS 8 Akasia 8.3.1 via an admin/modules/stock_take/index.php?keywords= URI.
0
Attacker Value
Unknown
CVE-2018-12656
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
Reflected Cross-Site Scripting (XSS) exists in the Membership module in SLiMS 8 Akasia 8.3.1 via an admin/modules/membership/index.php?keywords= URI.
0
Attacker Value
Unknown
CVE-2018-12657
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
Reflected Cross-Site Scripting (XSS) exists in the Master File module in SLiMS 8 Akasia 8.3.1 via an admin/modules/master_file/rda_cmc.php?keywords= URI.
0
Attacker Value
Unknown
CVE-2018-12655
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
Reflected Cross-Site Scripting (XSS) exists in the Circulation module in SLiMS 8 Akasia 8.3.1 via an admin/modules/circulation/loan_rules.php?keywords= URI, a related issue to CVE-2017-7242.
0
Attacker Value
Unknown
CVE-2018-12659
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
SLiMS 8 Akasia 8.3.1 allows remote attackers to bypass the CSRF protection mechanism and obtain admin access by omitting the csrf_token parameter.
0
Attacker Value
Unknown
CVE-2018-12654
Disclosure Date: June 22, 2018 (last updated November 26, 2024)
Reflected Cross-Site Scripting (XSS) exists in the Bibliography module in SLiMS 8 Akasia 8.3.1 via an admin/modules/bibliography/index.php?keywords= URI.
0
