All 8 CVE vulnerabilities found in omeka/omeka-s, with AI-generated Chinese analysis, references, and POCs.
Vendor: omeka
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-4561 | Cross-site Scripting (XSS) - Stored in omeka/omeka-s CWE-79 | 5.4 | - | 2023-08-28 |
| CVE-2023-4560 | Improper Authorization of Index Containing Sensitive Information in omeka/omeka-s CWE-612 | 4.3 | - | 2023-08-28 |
| CVE-2023-4159 | Unrestricted Upload of File with Dangerous Type in omeka/omeka-s CWE-434 | 8.8 | - | 2023-08-04 |
| CVE-2023-4158 | Cross-site Scripting (XSS) - Stored in omeka/omeka-s CWE-79 | 5.4 | - | 2023-08-04 |
| CVE-2023-4157 | Improper Neutralization of Special Elements in Output Used by a Downstream Component in omeka/omeka-s CWE-74 | 5.2 | Medium | 2023-08-04 |
| CVE-2023-3982 | Cross-site Scripting (XSS) - Stored in omeka/omeka-s CWE-79 | 5.4 | - | 2023-07-27 |
| CVE-2023-3981 | Server-Side Request Forgery (SSRF) in omeka/omeka-s CWE-918 | 7.5 | - | 2023-07-27 |
| CVE-2023-3980 | Cross-site Scripting (XSS) - Stored in omeka/omeka-s CWE-79 | 5.4 | - | 2023-07-27 |
All 8 known CVE vulnerabilities affecting omeka/omeka-s with full Chinese analysis, references, and POCs where available.