Vulnerabilities > CVE-2023-29015 - Unspecified vulnerability in Intranda Goobi Viewer Core

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

intranda

NVD

Published: 2023-04-06

Updated: 2024-11-21

Summary

The Goobi viewer is a web application that allows digitised material to be displayed in a web browser. A cross-site scripting vulnerability has been identified in the user comment feature of Goobi viewer core prior to version 23.03. An attacker could create a specially crafted comment, resulting in the execution of malicious script code in the user's browser when displaying the comment. The vulnerability has been fixed in version 23.03.

Vulnerable Configurations

Part	Description	Count
Application	Intranda Intranda Goobi Viewer Core 3.4.2 Intranda Goobi Viewer Core 3.4.7 Intranda Goobi Viewer Core 3.4.8 Intranda Goobi Viewer Core 3.4.9 Intranda Goobi Viewer Core 3.4.10 Intranda Goobi Viewer Core 4.3.0 Intranda Goobi Viewer Core 4.3.1 Intranda Goobi Viewer Core 4.3.2 Intranda Goobi Viewer Core 4.3.3 Intranda Goobi Viewer Core 4.3.5 Intranda Goobi Viewer Core 4.3.6 Intranda Goobi Viewer Core 4.3.7 Intranda Goobi Viewer Core 4.3.8 Intranda Goobi Viewer Core 4.4.0 Intranda Goobi Viewer Core 4.4.2 Intranda Goobi Viewer Core 4.5.0 Intranda Goobi Viewer Core 4.5.1 Intranda Goobi Viewer Core 4.6.0 Intranda Goobi Viewer Core 4.6.1 Intranda Goobi Viewer Core 4.6.2 Intranda Goobi Viewer Core 4.7.0 Intranda Goobi Viewer Core 4.7.1 Intranda Goobi Viewer Core 4.8.0 Intranda Goobi Viewer Core 4.8.1 Intranda Goobi Viewer Core 4.8.2 Intranda Goobi Viewer Core 4.8.3 Intranda Goobi Viewer Core 4.9.0 Intranda Goobi Viewer Core 4.9.1 Intranda Goobi Viewer Core 4.9.2 Intranda Goobi Viewer Core 4.10.0 Intranda Goobi Viewer Core 4.10.1 Intranda Goobi Viewer Core 4.10.3 Intranda Goobi Viewer Core 4.11.0 Intranda Goobi Viewer Core 4.11.1 Intranda Goobi Viewer Core 4.12.0 Intranda Goobi Viewer Core 4.12.1 Intranda Goobi Viewer Core 4.12.2 Intranda Goobi Viewer Core 4.13.0 Intranda Goobi Viewer Core 4.13.1 Intranda Goobi Viewer Core 21.01 Intranda Goobi Viewer Core 21.01.1 Intranda Goobi Viewer Core 21.01.2 Intranda Goobi Viewer Core 21.01.3 Intranda Goobi Viewer Core 21.01.4 Intranda Goobi Viewer Core 21.01.5 Intranda Goobi Viewer Core 21.02 Intranda Goobi Viewer Core 21.02.1 Intranda Goobi Viewer Core 21.02.2 Intranda Goobi Viewer Core 21.02.3 Intranda Goobi Viewer Core 21.02.4 Intranda Goobi Viewer Core 21.03 Intranda Goobi Viewer Core 21.03.1 Intranda Goobi Viewer Core 21.03.2 Intranda Goobi Viewer Core 21.03.3 Intranda Goobi Viewer Core 21.04 Intranda Goobi Viewer Core 21.04.1 Intranda Goobi Viewer Core 21.04.2 Intranda Goobi Viewer Core 21.04.3 Intranda Goobi Viewer Core 21.04.4 Intranda Goobi Viewer Core 21.04.5 Intranda Goobi Viewer Core 21.05 Intranda Goobi Viewer Core 21.05.1 Intranda Goobi Viewer Core 21.05.2 Intranda Goobi Viewer Core 21.06 Intranda Goobi Viewer Core 21.06.1 Intranda Goobi Viewer Core 21.06.2 Intranda Goobi Viewer Core 21.06.3 Intranda Goobi Viewer Core 21.06.4 Intranda Goobi Viewer Core 21.06.5 Intranda Goobi Viewer Core 21.06.6 Intranda Goobi Viewer Core 21.06.7 Intranda Goobi Viewer Core 21.06.8 Intranda Goobi Viewer Core 21.07 Intranda Goobi Viewer Core 21.07.1 Intranda Goobi Viewer Core 21.07.2 Intranda Goobi Viewer Core 21.08 Intranda Goobi Viewer Core 21.08.1 Intranda Goobi Viewer Core 21.08.2 Intranda Goobi Viewer Core 21.08.3 Intranda Goobi Viewer Core 21.08.4 Intranda Goobi Viewer Core 21.08.5 Intranda Goobi Viewer Core 21.08.6 Intranda Goobi Viewer Core 21.08.7 Intranda Goobi Viewer Core 21.08.8 Intranda Goobi Viewer Core 21.08.9 Intranda Goobi Viewer Core 21.09 Intranda Goobi Viewer Core 21.09.1 Intranda Goobi Viewer Core 21.09.2 Intranda Goobi Viewer Core 21.09.3 Intranda Goobi Viewer Core 21.09.4 Intranda Goobi Viewer Core 21.10 Intranda Goobi Viewer Core 21.10.1 Intranda Goobi Viewer Core 21.10.2 Intranda Goobi Viewer Core 21.10.3 Intranda Goobi Viewer Core 21.10.4 Intranda Goobi Viewer Core 21.10.5 Intranda Goobi Viewer Core 21.11 Intranda Goobi Viewer Core 21.11.1 Intranda Goobi Viewer Core 21.11.2 Intranda Goobi Viewer Core 21.11.3 Intranda Goobi Viewer Core 21.11.4 Intranda Goobi Viewer Core 21.11.5 Intranda Goobi Viewer Core 21.11.6 Intranda Goobi Viewer Core 21.12 Intranda Goobi Viewer Core 22.01 Intranda Goobi Viewer Core 22.01.1 Intranda Goobi Viewer Core 22.01.2 Intranda Goobi Viewer Core 22.01.3 Intranda Goobi Viewer Core 22.02 Intranda Goobi Viewer Core 22.02.1 Intranda Goobi Viewer Core 22.02.2 Intranda Goobi Viewer Core 22.02.3 Intranda Goobi Viewer Core 22.03 Intranda Goobi Viewer Core 22.03.1 Intranda Goobi Viewer Core 22.05 Intranda Goobi Viewer Core 22.05.1 Intranda Goobi Viewer Core 22.06 Intranda Goobi Viewer Core 22.06.1 Intranda Goobi Viewer Core 22.06.2 Intranda Goobi Viewer Core 22.06.3 Intranda Goobi Viewer Core 22.06.4 Intranda Goobi Viewer Core 22.07 Intranda Goobi Viewer Core 22.08 Intranda Goobi Viewer Core 22.08.1 Intranda Goobi Viewer Core 22.08.2 Intranda Goobi Viewer Core 22.08.3 Intranda Goobi Viewer Core 22.08.4 Intranda Goobi Viewer Core 22.09 Intranda Goobi Viewer Core 22.10 Intranda Goobi Viewer Core 22.10.1 Intranda Goobi Viewer Core 22.10.2 Intranda Goobi Viewer Core 22.10.3 Intranda Goobi Viewer Core 22.10.4 Intranda Goobi Viewer Core 22.10.5 Intranda Goobi Viewer Core 22.11 Intranda Goobi Viewer Core 22.11.1 Intranda Goobi Viewer Core 22.12 Intranda Goobi Viewer Core 23.01 Intranda Goobi Viewer Core 23.01.1 Intranda Goobi Viewer Core 23.01.2 Intranda Goobi Viewer Core 23.02	141

Summary

Vulnerable Configurations

References