Sunhater - Kcfinder CVE

Filtered by vendor Sunhater Subscribe

Filtered by product Kcfinder

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2014-3988	1 Sunhater	1 Kcfinder	2014-12-03	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in index.php in SunHater KCFinder 3.11 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) file or (2) directory (folder) name of an uploaded file.

Vulnerabilities (CVE)