CVE-2023-44961 Information

Description

SQL Injection vulnerability in Koha Library Software 23.0.5.04 and before allows a remote attacker to obtain sensitive information via the intranet/cgi bin/cataloging/ysearch.pl. component.

Reference

https://github.com/ggb0n/CVE-2023-44961