| Title | baidu UEditor v1.4.2 Cross Site Scripting |
|---|
| Description | A reflected cross-site scripting (XSS) vulnerability has been identified in the UEditor 1.4.2. This vulnerability permits an attacker to inject malicious scripts into web pages viewed by users, potentially compromising user data and session integrity. |
|---|
| Source | ⚠️ https://github.com/Hebing123/cve/issues/63 |
|---|
| User | jiashenghe (UID 39445) |
|---|
| Submission | 07/25/2024 13:47 (2 years ago) |
|---|
| Moderation | 07/31/2024 17:14 (6 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 273274 [Baidu UEditor 1.4.2 controller.php?action=catchimage source[] cross site scripting] |
|---|
| Points | 17 |
|---|