CVE-2021-26702

EPrints 3.4.2 exposes a reflected XSS opportunity in the dataset parameter to the cgi/dataset_dictionary URI.

Date published : 2021-03-01

https://files.eprints.org/2548/

https://github.com/grymer/CVE/blob/master/eprints_security_review.pdf