Vulnerabilities > Omeka > Omeka S
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-28 | CVE-2023-4560 | Unspecified vulnerability in Omeka S Improper Authorization of Index Containing Sensitive Information in GitHub repository omeka/omeka-s prior to 4.0.4. | 6.5 |
| 2023-08-28 | CVE-2023-4561 | Cross-site Scripting vulnerability in Omeka S Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.4. | 4.8 |
| 2023-08-04 | CVE-2023-4157 | Injection vulnerability in Omeka S CWE-74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') in GitHub repository omeka/omeka-s prior to version 4.0.3. | 4.8 |
| 2023-08-04 | CVE-2023-4158 | Unspecified vulnerability in Omeka S Cross-site Scripting (XSS) - Stored in GitHub repository omeka/omeka-s prior to 4.0.3. | 5.4 |
| 2023-08-04 | CVE-2023-4159 | Unspecified vulnerability in Omeka S Unrestricted Upload of File with Dangerous Type in GitHub repository omeka/omeka-s prior to 4.0.3. | 8.8 |