Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CSV Injection vulnerability in '/members/moremember.pl' and '/admin/aqbudgets.pl' endpoints in Koha Library Management System version 23.05.05 and earlier allows attackers to to inject DDE commands into csv exports via the 'Budget' and 'Patrons Member' components.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Library Management System 安全漏洞
Vulnerability Description
Library Management System是King Albaracin个人开发者的一个带有二维码考勤和自动生成借书证的图书馆管理系统。 Koha Library Management System 23.05.05及之前版本存在安全漏洞,该漏洞源于/members/moremember.pl和/admin/aqbudgets.pl端点允许攻击者通过Budget和Patrons Member组件进行 CSV 注入。
CVSS Information
N/A
Vulnerability Type
N/A