Lucene search
GoogleOSV:CVE-2020-18035HistoryApr 29, 2021 - 11:15 p.m.
CVE-2020-18035
2021-04-2923:15:07
Google
osv.dev
2
cve-2020-18035
remote attackers
arbitrary code execution
injection vulnerability
ckeditorfuncnum parameter
ckeditoruploadcontroller.java
jeesns v1.4.2
cross site scripting
Cross Site Scripting (XSS) in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the “CKEditorFuncNum” parameter in the component “CkeditorUploadController.java”.
References
Related
cnvd
cnvd
JEESNS Cross-Site Scripting Vulnerability
2021-05-12 00:00:00
cve
cve
CVE-2020-18035
2021-04-29 23:15:07
prion
prion
Cross site scripting
2021-04-29 23:15:00
cvelist
cvelist
CVE-2020-18035
2021-04-29 22:53:25
nvd
nvd
CVE-2020-18035
2021-04-29 23:15:07