High severity7.5NVD Advisory· Published Jun 7, 2020· Updated Jun 17, 2026
CVE-2020-13894
CVE-2020-13894
Description
handler/upload_handler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field.
Affected products
3- DEXT5 Editor/DEXT5 Editordescription
- Range: <=3.5.1402961
- Range: <=3.5.1402961
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.