Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2022-25037

May 31, 2024, 7:14 p.m.

Product(s) Impacted

wanEditor

  • 4.7.11
  • 4.7.12
  • 5

Description

An issue in wanEditor v4.7.11 and fixed in v.4.7.12 and v.5 was discovered to contain a cross-site scripting (XSS) vulnerability via the image upload function.

Weaknesses

Date

Published: May 31, 2024, 4:15 p.m.

Last Modified: May 31, 2024, 7:14 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References