Open Upload
1 CVEs
product
Monthly
Open Upload through 0.4.3 allows XSS via index.php?action=u and the filename field. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
PHP
Open Upload
NVD
GitHub
CVSS 3.1
6.1
EPSS
1.1%
EPSS 1%
CVSS 6.1
MEDIUM
POC
This Month
Open Upload through 0.4.3 allows XSS via index.php?action=u and the filename field. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
XSS
PHP
Open Upload
NVD
GitHub