VYPR

K-Box

by K-Box

CVEs (1)

  • CVE-2022-23637MedFeb 14, 2022
    risk 0.00cvss 6.1epss 0.00

    K-Box is a web-based application to manage documents, images, videos and geodata. Prior to version 0.33.1, a stored Cross-Site-Scripting (XSS) vulnerability is present in the markdown editor used by the document abstract and markdown file preview. A specifically crafted anchor…