VYPR
Medium severity6.1NVD Advisory· Published Sep 28, 2021· Updated Jun 17, 2026

CVE-2021-37267

CVE-2021-37267

Description

Cross Site Scripting (XSS) vulnerability exists in all versions of KindEditor, which can be exploited by an attacker to obtain user cookie information.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.