A Cross Site Request Forgery (CSRF) vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html.
CPE | Name | Operator | Version |
---|---|---|---|
kindeditor | eq | 4.1.5 | |
kindeditor | eq | 4.1.12 | |
kindeditor | eq | 4.1.4 | |
kindeditor | eq | 4.1.11 | |
kindeditor | eq | 4.1.10 | |
kindeditor | eq | 4.1.1 | |
kindeditor | eq | 4.1.2 | |
kindeditor | eq | 4.1.3 | |
kindeditor | eq | 4.1.6 | |
kindeditor | eq | 4.1.9 |