CVE-2017-1002024
N/A
N/A
Summary
Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/upload_json.php does not check authentication before allow users to upload files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Kind Editor Inc. | Kind Editor | unspecified < 4.1.12 | affected |
Weaknesses
- Arbitrary File Upload
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/kindsoft/kindeditor
- http://www.vapidlabs.com/advisory.php?v=195
- http://kindeditor.org
References
- https://github.com/kindsoft/kindeditor
- http://www.vapidlabs.com/advisory.php?v=195
- http://kindeditor.org
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.