3 matches found
CVE-2022-46934
kkFileView v4.1.0 was discovered to contain a cross-site scripting XSS vulnerability via the url parameter at /controller/OnlinePreviewController.java...
CVE-2022-46934
kkFileView v4.1.0 was discovered to contain a cross-site scripting XSS vulnerability via the url parameter at /controller/OnlinePreviewController.java...
CVE-2022-46934
kkFileView 4.1.0 is vulnerable to a Cross-Site Scripting (XSS) flaw in the url parameter of /controller/OnlinePreviewController.java. An attacker can inject arbitrary script into the victim’s browser, potentially stealing cookies or influencing page behavior. This aligns with multiple public repo...