← Back

Plupload

plupload

Vendor: Tiny • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-23562
1Tiny
1Plupload
Jun 17, 2026
Dec 3, 2021
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
This affects the package plupload before 2.3.9. A file name containing JavaScript code could be uploaded and run. An attacker would need to trick a user to upload this kind of file.