CNNVD-202507-3161 Information

CNNVD ID

CNNVD-202507-3161

Related CVE

CVE-2025-52360

• CNNVD Published: 2025-07-25

Description (Chinese)

Koha Library Management System是Koha开源的一个图书馆自动化管理系统。 Koha Library Management System 24.05版本存在安全漏洞，该漏洞源于搜索字段输入清理不当，可能导致跨站脚本。

Description (English)

Koha Library Management Systems is an automated library management system at the Koha Open Source. There is a security loophole in version 24.05 of Koha Library Management System, which stems from the inappropriate clean-up of search field inputs, which may lead to cross-site scripts.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Koha

Published

2025-07-25

Last Modified

2026-02-24

References

https://gist.github.com/MerttTuran/32289a1d3c173f0b7934237c1696bef1 https://access.redhat.com/security/cve/cve-2025-52360

Patch

https://koha-community.org/demo/