Vulnerabilities > PKP

DATE CVE VULNERABILITY TITLE RISK
2023-11-01 CVE-2023-5889 Insufficient Session Expiration vulnerability in PKP web Application Library
Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp CWE-613
8.2
2023-11-01 CVE-2023-5898 Unspecified vulnerability in PKP web Application Library
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp
8.8
2023-11-01 CVE-2023-5899 Cross-Site Request Forgery (CSRF) vulnerability in PKP web Application Library
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp CWE-352
8.8
2023-09-01 CVE-2023-4695 Unspecified vulnerability in PKP Pkb-Lib
Use of Predictable Algorithm in Random Number Generator in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
high complexity
pkp
8.1