5 matches found
0.8.18-p11 (=0.8.18-p12), @msvx/component (>=1.0.1 <=1.2.2) +24 more potentially affected by CVE-2021-42228 via kindeditor (=4.1.10)
kindeditor NPM version =4.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on kindeditor and may be impacted: - 0.8.18-p11 =0.8.18-p12 - @msvx/component =1.0.1, =0.0.1, =0.2.3, =0.1.1, =0.0.1, =0.0.3-p12, =4.1.9, =1.3.50, =1.0.0, =0.0.1, =0.2.49,...
CVE-2021-42228
creationtimestamp| type| source ---|---|--- 2021-10-14 20:27:53+00:00| seen| https://t.me/cibsecurity/30586...
CVE-2021-42228
A Cross Site Request Forgery CSRF vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html...
CVE-2021-42228
A Cross Site Request Forgery CSRF vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html...
CVE-2021-42228
CVE-2021-42228 describes a Cross Site Request Forgery (CSRF) vulnerability in KindEditor 4.1.x, demonstrated by examples/uploadbutton.html. The CVE is corroborated across multiple records (NVD, CVE List, GHSA, OSV, CNVD, CNNVD) with consistent wording that the editor is vulnerable to CSRF. No con...