Lucene search
K

189 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:49 a.m.9 views

CVE-2024-7342

A vulnerability was found in Baidu UEditor 1.4.3.3. It has been classified as problematic. This affects an unknown part of the file /ueditor/php/controller.php?action=uploadfile=utf-8. The manipulation of the argument upfile leads to unrestricted upload. It is possible to initiate the attack...

6.1CVSS6.3AI score0.00453EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:49 a.m.9 views

CVE-2024-41577

An arbitrary file upload vulnerability in the Ueditor component of productinfoquick v1.0 allows attackers to execute arbitrary code via uploading a crafted PNG file...

9.8CVSS7.8AI score0.00965EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:41 a.m.10 views

CVE-2024-40543

PublicCMS v4.0.202302.e was discovered to contain a Server-Side Request Forgery SSRF via the component /admin/ueditor?action=catchimage...

8.8CVSS8.8AI score0.00302EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:43 p.m.9 views

CVE-2021-37271

Cross Site Scripting XSS vulnerability exists in UEditor v1.4.3.3, which can be exploited by an attacker to obtain user cookie information...

5.4CVSS5.8AI score0.00544EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:36 a.m.11 views

CVE-2017-14744

UEditor 1.4.3.3 has XSS via the SRC attribute of an IFRAME element...

6.1CVSS5.9AI score0.00635EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/26 8:48 a.m.6 views

CVE-2025-3903

Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器:...

7.3CVSS7AI score0.00318EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/26 6:10 a.m.10 views

CVE-2025-29287

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.8AI score0.00626EPSS
Exploits1References1
NVD
NVD
added 2025/04/23 5:16 p.m.13 views

CVE-2025-3903

Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器:...

7.3CVSS0.00318EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/23 5:8 p.m.10 views

CVE-2025-3903 UEditor - 百度编辑器 - Critical - Unsupported - SA-CONTRIB-2025-044

Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器:...

0.00318EPSS
Exploits0References1
CVE
CVE
added 2025/04/23 5:8 p.m.61 views

CVE-2025-3903

The CVE-2025-3903 entry concerns Drupal UEditor (百度编辑器), a module in Drupal. Connected sources confirm a vulnerability affecting UEditor in Drupal and assign a high CVSS v3.1 score (7.3, HIGH) with network attack vector, no privileges required, and user interaction not needed; impact is limited t...

7.3CVSS6.7AI score0.00318EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/23 5:8 p.m.5 views

CVE-2025-3903 UEditor - 百度编辑器 - Critical - Unsupported - SA-CONTRIB-2025-044

Vulnerability in Drupal UEditor - 百度编辑器.This issue affects UEditor - 百度编辑器:...

7.2AI score0.00318EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/23 12:0 a.m.7 views

Drupal UEditor - 百度编辑器 module * - Unauthenticated Other Vulnerability Type vulnerability

Drupal UEditor - 百度编辑器 module - Unauthenticated Other Vulnerability Type vulnerability discovered by Drupal Security Site in WordPress Module UEditor - 百度编辑器 versions...

7.3CVSS6.8AI score0.00318EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/04/23 12:0 a.m.7 views

Drupal UEditor 安全漏洞

Drupal UEditor is a module plugin in the Drupal content management system for the Drupal community. A security vulnerability exists in Drupal UEditor that stems from a problem with the project files that affects usability...

7.3CVSS6.7AI score0.00318EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/23 12:0 a.m.4 views

PT-2025-17659 · Drupal · Ueditor

Name of the Vulnerable Software and Affected Versions: Drupal UEditor versions . Description: The issue affects UEditor - 百度编辑器, a component of Drupal. Recommendations: For Drupal UEditor version . , update to a version that includes a fix for this issue, as no specific workaround is provided...

7.3CVSS6.4AI score0.00318EPSS
Exploits0References4
Snyk
Snyk
added 2025/04/21 3:31 p.m.4 views

Arbitrary File Upload

Overview Affected versions of this package are vulnerable to Arbitrary File Upload via the ueditor component in the article management module. An attacker can execute arbitrary code by uploading a malicious XML file. Remediation Upgrade net.mingsoft:ms-mcms to version 5.5.0 or higher. References ...

9.8CVSS7.6AI score0.00626EPSS
Exploits1References2
OSV
OSV
added 2025/04/21 3:31 p.m.9 views

GHSA-3922-2R6R-R4FV MCMS allows arbitrary file uploads in the ueditor component

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.7AI score0.00626EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2025/04/21 3:31 p.m.21 views

MCMS allows arbitrary file uploads in the ueditor component

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS7.7AI score0.00626EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2025/04/21 3:15 p.m.6 views

CVE-2025-29287

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS6.1AI score0.00626EPSS
Exploits1References3
NVD
NVD
added 2025/04/21 3:15 p.m.11 views

CVE-2025-29287

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS0.00626EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/04/21 12:0 a.m.7 views

CVE-2025-29287

An arbitrary file upload vulnerability in the ueditor component of MCMS v5.4.3 allows attackers to execute arbitrary code via uploading a crafted file...

9.6AI score0.00626EPSS
Exploits1References2
Rows per page
Query Builder