A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary web scripts or HTML via a crafted file with a Javascript payload in the file...
6.1CVSS
5.9AI Score
0.002EPSS
Unrestricted file upload vulnerability in server/php/UploadHandler.php in the jQuery File Upload Plugin 6.4.4 for jQuery, as used in the Creative Solutions Creative Contact Form (formerly Sexy Contact Form) before 1.0.0 for WordPress and before 2.0.1 for Joomla!, allows remote attackers to execute....
9.8CVSS
9.7AI Score
0.931EPSS
9.8CVSS
9.4AI Score
0.006EPSS
9.8CVSS
9.5AI Score
0.005EPSS
Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <=...
9.8CVSS
9.3AI Score
0.967EPSS