RSS   Vulnerabilities for 'File-upload-with-preview'   RSS

2021-09-05
 
CVE-2021-23439

CWE-79
 

 
This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a user needs to be tricked into uploading such a file).

 


Copyright 2024, cxsecurity.com

 

Back to Top