exlibrisgroup CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

exlibrisgroup vulnerability overview

Aggregates CVE and security vulnerability intelligence across all exlibrisgroup-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk cross-site scripting and vendor risk sql injection and related problems; some flaws may lead to vendor impact session compromise and vendor impact data exposure.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2022-24177 A cross-site scripting (XSS) vulnerability in the component cgi-bin/ej.cgi of Ex libris ALEPH 500 v18.1 and v20 allows attackers to execute arbitrary web scripts or HTML. [email protected] 6.1 0.23% 2022-03-10 2024-11-21
CVE-2014-3719 Multiple SQL injection vulnerabilities in cgi-bin/review_m.cgi in Ex Libris ALEPH 500 (Integrated library management system) 18.1 and 20 allow remote attackers to execute arbitrary SQL commands via the (1) find, (2) lib, or (3) sid parameter. [email protected] 9.8 1.24% 2020-01-30 2024-11-21
CVE-2014-3718 Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/tag_m.cgi in Ex Libris ALEPH 500 (Integrated library management system) 18.1 and 20 allow remote attackers to inject arbitrary web script or HTML via the (1) find, (2) lib, or (3) sid parameter. [email protected] 6.1 0.37% 2020-01-30 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence