CVE-2018-12655

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-12655

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-12655.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-12655

Published

2018-06-22T15:29:00.310Z

Modified

2026-06-03T14:06:22.048314Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

Reflected Cross-Site Scripting (XSS) exists in the Circulation module in SLiMS 8 Akasia 8.3.1 via an admin/modules/circulation/loan_rules.php?keywords= URI, a related issue to CVE-2017-7242.

References

https://github.com/slims/slims8_akasia/issues/99

Affected packages

Git / github.com/slims/slims8_akasia

Affected ranges

Type

GIT

Repo

https://github.com/slims/slims8_akasia

Events

Introduced

Last affected

57f270755ae6d24bdd58263273ee5ca76627f7de

Database specific

{
    "cpe": "cpe:2.3:a:slims_akasia_project:slims_akasia:8.3.1:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "8.3.1"
        }
    ],
    "source": "CPE_STRING"
}

Affected versions

v8.*

v8.3.1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-12655.json"