📦 Eprints

CVE-2021-26476 is a critical OS command injection vulnerability in EPrints 3.4.2 that allows remote attackers to execute arbitrary commands on the server via specially crafted LaTeX input. This affect...

CVE-2021-26703 is a critical vulnerability in EPrints 3.4.2 that allows remote attackers to read arbitrary files and potentially execute commands via crafted JSON/XML input to specific CGI endpoints. ...

CVE-2021-3342 is a critical vulnerability in EPrints 3.4.2 that allows remote attackers to read arbitrary files and potentially execute commands on the server. Attackers exploit this by sending crafte...