Koha ILS 3.20.x CSRF / XSS / Traversal / SQL Injection

June 26, 2015 007admin Leave a comment

Koha ILS suffers from cross site request forgery, cross site scripting, remote SQL injection, and path traversal vulnerabilities. Versions 3.20.x less than or equal to 3.20.1, 3.18.x less than or equal to 3.18.8, and 3.16.x less than or equal to 3.16.12 are affected.

007 Software

Koha ILS 3.20.x CSRF / XSS / Traversal / SQL Injection

Leave a Reply Cancel reply

Software and Security Information