Lucene search
China National Vulnerability DatabaseCNVD-2021-74066HistoryMay 12, 2021 - 12:00 a.m.
JEESNS Cross-Site Scripting Vulnerability
2021-05-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
0.001 Low
EPSS
Percentile
48.1%
JEESNS is a social management system based on the JAVA enterprise-level platform. JEESNS is vulnerable to cross-site scripting, which allows remote attackers to execute arbitrary code by injecting commands into the " CKEditorFuncNum" parameter to execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jeesns jeesns | eq | 1.4.2 |
Related
cve
cve
CVE-2020-18035
2021-04-29 23:15:07
osv
osv
CVE-2020-18035
2021-04-29 23:15:07
prion
prion
Cross site scripting
2021-04-29 23:15:00
cvelist
cvelist
CVE-2020-18035
2021-04-29 22:53:25
nvd
nvd
CVE-2020-18035
2021-04-29 23:15:07