Description Arbitrary file upload in jQuery Upload File <= 4.0.2 Remediation References http://www.vapidlabs.com/advisory.php?v=206 Related Vulnerabilities CVE-2021-23431 Vulnerability in npm package joplin CVE-2021-46708 Vulnerability in maven package org.webjars:swagger-ui CVE-2022-23082 Vulnerability in maven package io.whitesource:curekit CVE-2021-3629 Vulnerability in maven package io.undertow:undertow-core CVE-2021-3189 Vulnerability in npm package slashify Severity Critical Classification CWE-434 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Exploit Third Party Advisory