Security Advisory

CVE-2021-23439

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-05 14:10:11
Last updated 2024-09-16 18:56:03
Assigner snyk
State PUBLISHED

Description

This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a user needs to be tricked into uploading such a file).