Filtered by vendor Hayageek Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-37504 1 Hayageek 1 Jquery Upload File 2024-11-21 6.1 Medium
A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary web scripts or HTML via a crafted file with a Javascript payload in the file name.
CVE-2018-9207 1 Hayageek 1 Jquery Upload File 2024-11-21 N/A
Arbitrary file upload in jQuery Upload File <= 4.0.2