Описание
A cross-site scripting (XSS) vulnerability in Ready_'s File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file.
EPSS
Процентиль: 26%
0.0009
Низкий
Дефекты
CWE-79
Связанные уязвимости
github
10 месяцев назад
A cross-site scripting (XSS) vulnerability in Ready_'s File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file.
EPSS
Процентиль: 26%
0.0009
Низкий
Дефекты
CWE-79