Cross Site Scripting (XSS) in Jeesns v1.4.2 allows remote malicious users to execute arbitrary code by injecting commands into the "CKEditorFuncNum" parameter in the component "CkeditorUploadController.java".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
jeesns jeesns 1.4.2 |