Vulnerabilities

CVE-2014-1924

by Fred · 24/01/2020

The MARC framework import/export function (admin/import_export_framework.pl) in Koha before 3.8.23, 3.10.x before 3.10.13, 3.12.x before 3.12.10, and 3.14.x before 3.14.3 does not require authentication, which allows remote attackers to conduct SQL injection attacks via unspecified vectors.

Date published : 2020-01-24

http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=11666

http://koha-community.org/security-release-february-2014/

Similar

Tags: Cybersecurity Alert