Lucene search
China National Vulnerability DatabaseCNVD-2023-00013HistoryDec 27, 2022 - 12:00 a.m.
kkFileView Cross-Site Scripting Vulnerability (CNVD-2023-00013)
2022-12-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
18
kkfileview
cross-site scripting
vulnerability
picturespreview
spring-boot
keking technology
china
attack
0.001 Low
EPSS
Percentile
33.3%
kkFileView is a Spring-Boot-based online file preview project from Keking Technology (China). kkFileView is vulnerable to a cross-site scripting vulnerability that stems from the setWatermarkAttribute function in its /picturesPreview file, which allows attackers to implement cross-site scripting. No details of the vulnerability are available at this time.
Related
cvelist
cvelist
nvd
nvd
CVE-2022-4740
2022-12-25 20:15:26
cve
cve
CVE-2022-4740
2022-12-25 20:15:26
prion
prion
Cross site scripting
2022-12-25 20:15:00