Lucene search
GoogleOSV:CVE-2019-14315HistoryJul 28, 2019 - 1:15 a.m.
CVE-2019-14315
2019-07-2801:15:10
Google
osv.dev
6
A cross-site scripting (XSS) vulnerability in upload.php in SunHater KCFinder 3.20-test1, 3.20-test2, 3.12, and earlier allows remote attackers to inject arbitrary web script or HTML via the CKEditorFuncNum parameter.
References
Related
cvelist
cvelist
CVE-2019-14315
2019-07-28 00:23:02
nvd
nvd
CVE-2019-14315
2019-07-28 01:15:10
cve
cve
CVE-2019-14315
2019-07-28 01:15:10
github
github
SunHater KCFinder cross-site scripting (XSS) vulnerability in upload.php
2022-05-24 16:51:33
prion
prion
Cross site scripting
2019-07-28 01:15:00
osv
osv
SunHater KCFinder cross-site scripting (XSS) vulnerability in upload.php
2022-05-24 16:51:33