Kindeditor@* Security Vulnerabilities and Issues — Kindeditor@* CVE List

Lucene search

KindsoftKindeditor*

2 matches found

CVE•added 2021/10/14 5:15 p.m.•46 views

CVE-2021-42227

Cross SIte Scripting (XSS) vulnerability exists in KindEditor 4.1.x via a Google search inurl:/examples/uploadbutton.html and then the .html file on the website that uses this editor (the file suffix is allowed).

6.1CVSS5.9AI score0.00345EPSS

CVE•added 2021/10/14 5:15 p.m.•46 views

CVE-2021-42228

A Cross Site Request Forgery (CSRF) vulnerability exists in KindEditor 4.1.x, as demonstrated by examples/uploadbutton.html.

8.8CVSS8.8AI score0.00186EPSS