Jeesns Security Vulnerabilities and Issues — Jeesns CVE List

Lucene search

JeesnsJeesns

4 matches found

CVE•added 2021/09/09 11:15 p.m.•48 views

CVE-2020-19282

A reflected cross-site scripting (XSS) vulnerability in Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field.

6.1CVSS5.8AI score0.056EPSS

CVE•added 2021/04/29 11:15 p.m.•44 views

CVE-2020-18035

Cross Site Scripting (XSS) in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java".

6.1CVSS6.3AI score0.00429EPSS

CVE•added 2021/09/09 11:15 p.m.•40 views

CVE-2020-19283

A reflected cross-site scripting (XSS) vulnerability in the /newVersion component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML.

6.1CVSS6AI score0.05661EPSS

CVE•added 2021/09/09 11:15 p.m.•36 views

CVE-2020-19295

A reflected cross-site scripting (XSS) vulnerability in the /weibo/topic component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML.

6.1CVSS6AI score0.11021EPSS