CVE-2020-18035

Cross Site Scripting (XSS) in Jeesns v1.4.2 allows remote attackers to execute arbitrary code by injecting commands into the «CKEditorFuncNum» parameter in the component «CkeditorUploadController.java».




twitter facebook youtube