Vulnerabilities > Ganesha Digital Library Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-13 | CVE-2014-100030 | Cross-site Scripting vulnerability in Ganesha Digital Library Project Ganesha Digital Library 4.2 Cross-site scripting (XSS) vulnerability in module/search/function.php in Ganesha Digital Library (GDL) 4.2 allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a ByEge action. | 4.3 |
2015-01-13 | CVE-2014-100029 | Path Traversal vulnerability in Ganesha Digital Library Project Ganesha Digital Library 4.2 Multiple directory traversal vulnerabilities in class/session.php in Ganesha Digital Library (GDL) 4.2 allow remote attackers to read arbitrary files via a .. | 5.0 |