Lucene search
GoogleOSV:GHSA-89Q5-MJ78-PW5WHistoryDec 02, 2021 - 5:52 p.m.
Cross-site Scripting in pekeupload
2021-12-0217:52:26
Google
osv.dev
8
0.001 Low
EPSS
Percentile
38.8%
This affects all versions of package pekeupload. If an attacker induces a user to upload a file whose name contains javascript code, the javascript code will be executed.
| CPE | Name | Operator | Version |
|---|---|---|---|
| pekeupload | le | 2.1.1 |
Related
cnvd
cnvd
pekeUpload cross-site scripting vulnerability
2021-11-04 00:00:00
prion
prion
Design/Logic Flaw
2021-11-22 17:15:00
cve
cve
CVE-2021-23673
2021-11-22 17:15:08
cvelist
cvelist
CVE-2021-23673 Cross-site Scripting (XSS)
2021-11-22 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2021-11-23 03:58:17
github
github
Cross-site Scripting in pekeupload
2021-12-02 17:52:26
nvd
nvd
CVE-2021-23673
2021-11-22 17:15:08