Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2018-25002

Disclosure Date: January 01, 2021 (last updated February 22, 2025)
uploader.php in the KCFinder integration project through 2018-06-01 for Drupal mishandles validation, aka SA-CONTRIB-2018-024. NOTE: This project is not covered by Drupal's security advisory policy.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0