CVE-2021-23673

Summary

This affects all versions of package pekeupload. If an attacker induces a user to upload a file whose name contains javascript code, the javascript code will be executed.

Affected Software

VendorProductVersion RangeStatus
n/apekeupload0 < unspecifiedaffected

Weaknesses

  • Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References