KodExplorer is a web file manager. A cross-site scripting vulnerability exists in KodExplorer version 4.45. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in /index.php, which can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload.
CPE | Name | Operator | Version |
---|---|---|---|
kalcaddle kodexplorer | eq | 4.45 |