Description
KindEditor through 4.1.11 has a path traversal vulnerability in php/upload_json.php. Anyone can browse a file or directory in the kindeditor/attached/ folder via the path parameter without authentication.
Remediation
References
https://github.com/kindsoft/kindeditor/issues/289
Related Vulnerabilities
CVE-2020-10591 Vulnerability in maven package com.walmartlabs.concord.server:concord-server
CVE-2023-49371 Vulnerability in maven package com.ruoyi:ruoyi
CVE-2021-43571 Vulnerability in npm package starkbank-ecdsa
CVE-2020-7765 Vulnerability in npm package @firebase/util
CVE-2011-4969 Vulnerability in maven package org.webjars.bower:jquery