Vulnerabilities > PKP > PKP WEB Application Library > High

DATE CVE VULNERABILITY TITLE RISK
2023-11-01 CVE-2023-5889 Insufficient Session Expiration vulnerability in PKP web Application Library
Insufficient Session Expiration in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp CWE-613
8.2
8.2
2023-11-01 CVE-2023-5898 Unspecified vulnerability in PKP web Application Library
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp
8.8
8.8
2023-11-01 CVE-2023-5899 Cross-Site Request Forgery (CSRF) vulnerability in PKP web Application Library
Cross-Site Request Forgery (CSRF) in GitHub repository pkp/pkp-lib prior to 3.3.0-16.
network
low complexity
pkp CWE-352
8.8
8.8