2 matches found
CVE-2022-40879
kkFileView 4.1.0 is vulnerable to Cross-Site Scripting (XSS) via the errorMsg parameter. The Nuclei template for CVE-2022-40879 confirms multiple XSS flaws that allow arbitrary script execution in the victim’s browser, potentially enabling cookie-based credential theft and other attacks. Affected...
CVE-2022-40879
kkFileView v4.1.0 is vulnerable to Cross Site Scripting XSS via the parameter 'errorMsg.'...