CVE-2021-36646: XSS
First published: Wed Sep 06 2023(Updated: )
A Cross Site Scrtpting (XSS) vulnerability in KodExplorer 4.45 allows remote attackers to run arbitrary code via /index.php page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Kodexplorer | =4.45 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-36646.
What is the severity level of CVE-2021-36646?
The severity level of CVE-2021-36646 is medium with a CVSS score of 6.1.
What is the affected software?
The affected software is KodExplorer version 4.45.
How can remote attackers exploit this vulnerability?
Remote attackers can exploit this vulnerability by running arbitrary code via the /index.php page.
Is there a fix available for CVE-2021-36646?
There may be a fix available for CVE-2021-36646, please refer to the referenced link for more information.
- agent/type
- agent/references
- agent/severity
- agent/description
- agent/event
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/author
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/kodcloud
- canonical/kodexplorer
- version/kodexplorer/4.45