cpe:2.3:a:keking:kkfileview:4.0.0:*:*:*:*:*:*:*
kkFileView 4.0 is vulnerable to Server-side request forgery (SSRF) via controller\OnlinePreviewController.java.
Max CVSS
9.8
EPSS Score
0.24%
Published
2022-10-17
Updated
2022-10-20
kkFileView 4.0 is vulnerable to Cross Site Scripting (XSS) via controller\ Filecontroller.java.
Max CVSS
6.1
EPSS Score
0.07%
Published
2022-10-17
Updated
2022-10-19
kkFileView v4.0.0 was discovered to contain an arbitrary file deletion vulnerability via the fileName parameter at /controller/FileController.java.
Max CVSS
6.5
EPSS Score
0.08%
Published
2022-09-02
Updated
2022-09-07
kkFileView v4.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the url parameter at /controller/OnlinePreviewController.java.
Max CVSS
6.1
EPSS Score
0.31%
Published
2022-05-25
Updated
2022-06-01
kkFileview v4.0.0 has arbitrary file read through a directory traversal vulnerability which may lead to sensitive file leak on related host.
Max CVSS
7.5
EPSS Score
0.86%
Published
2022-02-15
Updated
2022-02-23
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!