Lucene search
+L

5 matches found

vulnersosv
vulnersosv
added 2021/10/18 7:44 p.m.7 views

0.8.18-p11 (=0.8.18-p12), @msvx/component (>=1.0.1 <=1.2.2) +24 more potentially affected by CVE-2021-42228 via kindeditor (=4.1.10)

kindeditor NPM version =4.1.10 is affected by a known vulnerability. The following packages have a transitive dependency on kindeditor and may be impacted: - 0.8.18-p11 =0.8.18-p12 - @msvx/component =1.0.1, =0.0.1, =0.2.3, =0.1.1, =0.0.1, =0.0.3-p12, =4.1.9, =1.3.50, =1.0.0, =0.0.1, =0.2.49,...

8.8CVSS7.2AI score0.00957EPSS
Exploits1
circl
circl
added 2021/10/14 8:27 p.m.9 views

CVE-2021-42228

creationtimestamp| type| source ---|---|--- 2021-10-14 20:27:53+00:00| seen| https://t.me/cibsecurity/30586...

8.8CVSS8.1AI score0.00957EPSS
Exploits1References1
nvd
nvd
added 2021/10/14 5:15 p.m.25 views

CVE-2021-42228

A Cross Site Request Forgery CSRF vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html...

8.8CVSS0.00957EPSS
Exploits1References1
osv
osv
added 2021/10/14 5:15 p.m.21 views

CVE-2021-42228

A Cross Site Request Forgery CSRF vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html...

8.8CVSS8.8AI score
Exploits0References1
cve
cve
added 2021/10/14 4:38 p.m.64 views

CVE-2021-42228

CVE-2021-42228 describes a Cross Site Request Forgery (CSRF) vulnerability in KindEditor 4.1.x, demonstrated by examples/uploadbutton.html. The CVE is corroborated across multiple records (NVD, CVE List, GHSA, OSV, CNVD, CNNVD) with consistent wording that the editor is vulnerable to CSRF. No con...

8.8CVSS8.8AI score0.00957EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder