Medium severity6.1NVD Advisory· Published Sep 28, 2021· Updated Jun 17, 2026
CVE-2021-37267
CVE-2021-37267
Description
Cross Site Scripting (XSS) vulnerability exists in all versions of KindEditor, which can be exploited by an attacker to obtain user cookie information.
Affected products
2- KindEditor/KindEditordescription
Patches
Vulnerability mechanics
References
1- www.cnvd.org.cn/flaw/show/3257066nvdThird Party Advisory
News mentions
0No linked articles in our index yet.