← Back

Jquery Upload File

jquery_upload_file

Vendor: Hayageek • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-37504
1Hayageek
1Jquery Upload File
Nov 21, 2024
Feb 25, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary web scripts or HTML via a crafted file with a Javascript payload in the file nam...Show more
A cross-site scripting (XSS) vulnerability in the fileNameStr parameter of jQuery-Upload-File v4.0.11 allows attackers to execute arbitrary web scripts or HTML via a crafted file with a Javascript payload in the file name.Show less
CVE-2018-9207
1Hayageek
1Jquery Upload File
Jun 17, 2026
Nov 19, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Arbitrary file upload in jQuery Upload File <= 4.0.2