Slims Akasia Project Slims Akasia — known CVE vulnerabilities
Every CVE whose affected-product data names Slims Akasia Project Slims Akasia, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2018-12659 — CVSS 8.8 (high): SLiMS 8 Akasia 8.3.1 allows remote attackers to bypass the CSRF protection mechanism and obtain admin access by omitting the csrf_token…
CVE-2018-12654 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) exists in the Bibliography module in SLiMS 8 Akasia 8.3.1 via an admin/modules/bibliography/index.php?k…
CVE-2018-12655 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) exists in the Circulation module in SLiMS 8 Akasia 8.3.1 via an admin/modules/circulation/loan_rules.ph…
CVE-2018-12656 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) exists in the Membership module in SLiMS 8 Akasia 8.3.1 via an admin/modules/membership/index.php?keywo…
CVE-2018-12657 — CVSS 6.1 (medium): Reflected Cross-Site Scripting (XSS) exists in the Master File module in SLiMS 8 Akasia 8.3.1 via an admin/modules/master_file/rda_cmc.php?k…