Home

Description

Public Knowledge Project pkp-lib 3.4.0-7 and earlier is vulnerable to Open redirect due to a lack of input sanitization in the logout function.

PUBLISHED Reserved 2024-09-11 | Published 2024-10-21 | Updated 2024-10-22 | Assigner mitre

References

drive.google.com/...d/1AVVw1aibDPBHakU8eTpCA6hna5Ecg2UJ/view

github.com/...search/blob/main/CVEs/CVE-2024-46326/README.md

github.com/pkp/pkp-lib/issues/10478

cve.org (CVE-2024-46326)

nvd.nist.gov (CVE-2024-46326)

Download JSON