RSS   Vulnerabilities for 'Plupload'   RSS

2021-12-03
 
CVE-2021-23562

CWE-434
 

 
This affects the package plupload before 2.3.9. A file name containing JavaScript code could be uploaded and run. An attacker would need to trick a user to upload this kind of file.

 

 >>> Vendor: TINY 3 Products
Moxiemanager
Tinymce
Plupload


Copyright 2022, cxsecurity.com

 

Back to Top