漏洞描述
kkFileview v4.1.0存在跨站脚本攻击漏洞,此漏洞是对用户输入的数据验证不充分所导致的。
kkFileview v4.1.0 跨站脚本攻击漏洞
PoC代码
暂无相关漏洞推荐
- wuzhicms-v410-sqli: WuzhiCMS V410 sqli
- POC CVE-2019-16313: ifw8 Router ROM v4.31 - Credential Discovery
- POC CVE-2021-3377: npm ansi_up v4 - Cross-Site Scripting
- POC CVE-2021-43734: kkFileview v4.0.0 - Local File Inclusion
- POC CVE-2022-29349: kkFileView 4.0.0 - Cross-Site Scripting
- POC CVE-2022-35151: kkFileView 4.1.0 - Cross-Site Scripting
- POC CVE-2022-40879: kkFileView 4.1.0 - Cross-Site Scripting
- POC CVE-2022-43140: kkFileView 4.1.0 - Server-Side Request Forgery
- POC CVE-2022-46934: kkFileView 4.1.0 - Cross-Site Scripting
- POC CVE-2023-31548: ChurchCRM v4.5.3 - Cross-Site Scripting
- POC CVE-2024-4348: osCommerce v4.0 - Cross-site Scripting
- POC CVE-2024-44349: AnteeoWMS < v4.7.34 - SQL Injection
- POC CVE-2024-7332: TOTOLINK CP450 v4.1.0cu.747_B20191224 - Hard-Coded Password Vulnerability