Vulnerabilities > Eprints > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-01 | CVE-2021-26702 | Cross-site Scripting vulnerability in Eprints 3.4.2 EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/dataset_dictionary URI. | 6.1 |
| 2021-03-01 | CVE-2021-26475 | Cross-site Scripting vulnerability in Eprints 3.4.2 EPrints 3.4.2 exposes a reflected XSS opportunity in the via a cgi/cal URI. | 6.1 |