Information disclosure

2019-09-2621:15:00

PRIOn knowledge base

www.prio-n.com

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.0%

JSON

An issue was discovered in CKFinder through 2.6.2.1 and 3.x through 3.5.0. The documentation has misleading information that could lead to a conclusion that the application has a built-in bulletproof content sniffing protection.

CPENameOperatorVersion
ckfinderle2.6.2.1
ckfinderge3.0
ckfinderle3.5.0

Name	Operator	Version
ckfinder	le	2.6.2.1
ckfinder	ge	3.0
ckfinder	le	3.5.0

References

ckeditor.com/blog/CKFinder-3.5.1-and-CKFinder-2.6.3-released/