CVE-2022-2266

University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version 19.2

medium 6.1 CVSS 3.1

Published: Sep 22, 2022

Modified: May 20, 2026

Vendor: Yordam

Description

University Library Automation System developed by Yordam Bilgi Teknolojileri before version 19.2 has an unauthenticated Reflected XSS vulnerability. This has been fixed in the version 19.2

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-22-0637
https://www.usom.gov.tr/bildirim/tr-22-0637
https://www.usom.gov.tr/bildirim/tr-22-0637

Related CVEs

CVSS Breakdown

Version	3.1
Score	6.1 / 10
Severity	medium

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Weakness (CWE)

CWE-79

Affected Product

Vendor	Yordam
Product	Library Automation System