3 matches found
CVE-2021-23673
This affects all versions of package pekeupload. If an attacker induces a user to upload a file whose name contains javascript code, the javascript code will be executed...
CVE-2021-23673
CVE-2021-23673 affects all versions of the jQuery plugin pekeupload . An attacker can induce a user to upload a file whose name contains JavaScript, which will be executed in the user’s browser, enabling a Cross-site Scripting (XSS) attack. The vulnerability is documented across multiple sources ...
CVE-2021-23673 Cross-site Scripting (XSS)
This affects all versions of package pekeupload. If an attacker induces a user to upload a file whose name contains javascript code, the javascript code will be executed...