Vulnerability CVE-2023-5892


Published: 2023-11-01

Description:
Cross-site Scripting (XSS) - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16.

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://huntr.com/bounties/16719252-d88d-43cc-853a-24ff75a067d8
https://github.com/pkp/pkp-lib/commit/a0485a5c7410821e0432c079ca676ee6026bffb9

Copyright 2026, cxsecurity.com

 

Back to Top