Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-23439 | 1 Johndatserakis | 1 File-upload-with-preview | 2024-03-26 | 4.3 MEDIUM | 6.1 MEDIUM |
This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a user needs to be tricked into uploading such a file). |