Description
KindEditor through 4.1.11 has a path traversal vulnerability in php/upload_json.php. Anyone can browse a file or directory in the kindeditor/attached/ folder via the path parameter without authentication.
Remediation
References
https://github.com/kindsoft/kindeditor/issues/289
Related Vulnerabilities
CVE-2020-7723 Vulnerability in npm package promisehelpers
CVE-2018-6464 Vulnerability in maven package org.webjars.bower:simditor
CVE-2016-10735 Vulnerability in npm package bootstrap-sass
CVE-2022-36090 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2022-36100 Vulnerability in maven package org.xwiki.platform:xwiki-platform-tag-ui