VYPR
Vendor

CKFinder

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2019-15862HigSep 26, 2019
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in CKFinder through 2.6.2.1. Improper checks of file names allows remote attackers to upload files without any extension (even if the application was configured to accept files only with a defined set of extensions). This affects CKFinder for ASP,…

  • CVE-2019-15891MedSep 26, 2019
    risk 0.35cvss 5.3epss 0.01

    An issue was discovered in CKFinder through 2.6.2.1 and 3.x through 3.5.0. The documentation has misleading information that could lead to a conclusion that the application has a built-in bulletproof content sniffing protection.