public knowledge project
Web & CMS Pluginsoss-project
Latest CVEs
The 9 most recently published vulnerabilities affecting public knowledge project.
- CVE-2025-13469Public Knowledge Project omp/ojs Payment Instructions Setting paymentForm.tpl cross site scripting2.4
- CVE-2024-7902pkp ojs signOut redirect4.3
- CVE-2024-25438A cross-site scripting (XSS) vulnerability in the Submission module of Pkp Ojs v3.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Input subject f...6.1
- CVE-2022-26616PKP Vendor Open Journal System v2.4.8 to v3.3.8 allows attackers to perform reflected cross-site scripting (XSS) attacks via crafted HTTP headers.6.1
- CVE-2022-24181Cross-site scripting (XSS) via Host Header injection in PKP Open Journals System 2.4.8 >= 3.3 allows remote attackers to inject arbitary code via the X-Forwarded-Host Header.6.1
- CVE-2018-12588Cross-site scripting (XSS) vulnerability in templates/frontend/pages/searchResults.tpl in Public Knowledge Project (PKP) Open Monograph Press (OMP) v1.2.0 through 3.1.1-2 before 3.1.1-3 allows remo...6.1
- CVE-2011-5196Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Journal Systems 2.3.6 and earlier allows remote attackers to hijack the authentication o...6.8
- CVE-2011-5195Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Conference Systems 2.3.4 and earlier allows remote attackers to hijack the authenticatio...6.8
- CVE-2011-5197Cross-site request forgery (CSRF) vulnerability in index/manager/fileUpload in Public Knowledge Project Open Harvester Systems 2.3.1 and earlier allows remote attackers to hijack the authentication...6.8