Vulnerabilities (CVE)

Filtered by vendor Baidu Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-36631	1 Baidu	1 Baidunetdisk	2023-08-08	N/A	6.7 MEDIUM
Untrusted search path vulnerability in Baidunetdisk Version 7.4.3 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2021-37271	1 Baidu	1 Ueditor	2021-10-01	3.5 LOW	5.4 MEDIUM
Cross Site Scripting (XSS) vulnerability exists in UEditor v1.4.3.3, which can be exploited by an attacker to obtain user cookie information.
CVE-2017-14744	1 Baidu	1 Ueditor	2017-10-06	4.3 MEDIUM	6.1 MEDIUM
UEditor 1.4.3.3 has XSS via the SRC attribute of an IFRAME element.