Lucene search
K

159 matches found

CNNVD
CNNVD
added 2023/12/16 12:0 a.m.4 views

KodExplorer Code Issue Vulnerability

KodExplorer is a web file manager by the individual developer warlee. A code issue vulnerability exists in KodExplorer version 4.51.03, which stems from operations on parameterized paths/files that can lead to unrestricted uploads...

9.8CVSS7AI score0.00841EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/12/16 12:0 a.m.4 views

KodExplorer Code Issue Vulnerability

KodExplorer is a web file manager by the individual developer warlee. A code issue vulnerability exists in KodExplorer version 4.51.03, which stems from a manipulation that can lead to server-side request forgery...

9.8CVSS6.9AI score0.00762EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/12/16 12:0 a.m.5 views

KodExplorer Code Injection Vulnerability

KodExplorer is a web file manager by the individual developer warlee. A code injection vulnerability exists in KodExplorer version 4.51.03, which stems from a manipulation that could lead to code injection...

9.8CVSS7.4AI score0.0091EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/12/16 12:0 a.m.5 views

PT-2023-32793 · Kalcaddle · Kodexplorer

Name of the Vulnerable Software and Affected Versions: kalcaddle KodExplorer versions up to 4.51.03 Description: A critical vulnerability has been found in kalcaddle KodExplorer, affecting an unknown function of the file plugins/webodf/app.php. This issue leads to server-side request forgery and...

9.8CVSS6.6AI score0.00762EPSS
Exploits0References9
CNVD
CNVD
added 2023/09/11 12:0 a.m.17 views

KodExplorer cross-site scripting vulnerability (CNVD-2023-72248)

KodExplorer is a web file manager. A cross-site scripting vulnerability exists in KodExplorer version 4.45. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in /index.php, which can be exploited by an attacker to execute arbitrary web script or HTML ...

5.8CVSS6.2AI score0.00705EPSS
Exploits0Affected Software1
NVD
NVD
added 2023/09/06 5:15 p.m.21 views

CVE-2021-36646

A Cross Site Scrtpting XSS vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page...

6.1CVSS6.3AI score0.00705EPSS
Exploits0References1
OSV
OSV
added 2023/09/06 5:15 p.m.14 views

CVE-2021-36646

A Cross Site Scrtpting XSS vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page...

6.1CVSS7AI score
Exploits0References1
Prion
Prion
added 2023/09/06 5:15 p.m.17 views

Cross site scripting

A Cross Site Scrtpting XSS vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page...

5.8CVSS6.4AI score0.00705EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/09/06 12:0 a.m.8 views

KodExplorer 跨站脚本漏洞

KodExplorer is a web file manager. A cross-site scripting vulnerability exists in KodExplorer version 4.45. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data in /index.php, which can be exploited by an attacker to execute arbitrary web script or HTML ...

6.1CVSS5.9AI score0.00705EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/09/06 12:0 a.m.5 views

PT-2023-12295 · Unknown · Kodexplorer

Name of the Vulnerable Software and Affected Versions: KodExplorer version 4.45 Description: A Cross Site Scripting XSS issue allows remote attackers to run arbitrary code via the "/index.php" page. This enables attackers to execute malicious scripts on the victim's browser, potentially leading t...

6.1CVSS6.3AI score0.00705EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/09/06 12:0 a.m.11 views

CVE-2021-36646

A Cross Site Scrtpting XSS vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page...

6.7AI score0.00705EPSS
Exploits0References1
CVE
CVE
added 2023/09/06 12:0 a.m.78 views

CVE-2021-36646

CVE-2021-36646 – KodExplorer 4.45 : Several connected sources confirm a cross-site scripting (XSS) issue. The nuclei template specifies a reflected XSS in the file view functionality, specifically in app/template/api/view.html where the path parameter is echoed unsafely, enabling attacker-supplie...

6.1CVSS6.2AI score0.00705EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/10 4:15 p.m.21 views

CVE-2023-37153

KodExplorer 4.51 contains a Cross-Site Scripting XSS vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field...

6.1CVSS5.8AI score0.00614EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2023/07/10 4:15 p.m.3 views

CVE-2023-37153

KodExplorer 4.51 contains a Cross-Site Scripting XSS vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field...

6.1CVSS6.4AI score0.00614EPSS
Exploits1References5
Prion
Prion
added 2023/07/10 4:15 p.m.14 views

Cross site scripting

KodExplorer 4.51 contains a Cross-Site Scripting XSS vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field...

5.8CVSS5.8AI score0.00614EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2023/07/10 12:0 a.m.25 views

CVE-2023-37153

KodExplorer 4.51 contains a Cross-Site Scripting XSS vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field...

5.9AI score0.00614EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/07/10 12:0 a.m.10 views

CVE-2023-37153

KodExplorer 4.51 contains a Cross-Site Scripting XSS vulnerability in the Description box of the Light App creation feature. An attacker can exploit this vulnerability by injecting XSS syntax into the Description field...

5.2AI score0.00614EPSS
Exploits1References4
CVE
CVE
added 2023/07/10 12:0 a.m.43 views

CVE-2023-37153

CVE-2023-37153 : KodExplorer 4.51 contains a Cross-Site Scripting (XSS) vulnerability in the Description field of the Light App creation feature. An attacker can inject XSS syntax into the Description, causing script execution when the field is rendered. The available connected documents confirm ...

6.1CVSS5.8AI score0.00614EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.5 views

KodExplorer 跨站脚本漏洞

KodExplorer is a web file manager by warlee personal developer. A security vulnerability exists in KodExplorer version 4.51, which stems from a cross-site scripting XSS vulnerability contained in the description box of the Create function, which can be exploited by an attacker by injecting XSS...

6.1CVSS5.8AI score0.00614EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/07/10 12:0 a.m.5 views

PT-2023-25811 · Unknown · Kodexplorer

Name of the Vulnerable Software and Affected Versions: KodExplorer version 4.51 Description: The issue concerns a Cross-Site Scripting XSS vulnerability located in the Description box of the Light App creation feature. An attacker can exploit this by injecting XSS syntax into the Description fiel...

6.1CVSS5.8AI score0.00614EPSS
Exploits1References6
Rows per page
Query Builder