5 matches found
CVE-2020-18035
Cross Site Scripting XSS in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java"...
CVE-2020-18035
Cross Site Scripting XSS in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java"...
Cross site scripting
Cross Site Scripting XSS in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java"...
CVE-2020-18035
Cross Site Scripting XSS in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java"...
CVE-2020-18035
CVE-2020-18035 is a cross-site scripting vulnerability in Jeesns v1.4.2. The issue arises in the CKEditor integration, specifically through the CKEditorFuncNum parameter in the file/component CkeditorUploadController.java, allowing remote attackers to craft inputs that execute arbitrary code in t...