Shubham03007

1 exploit Active since Nov 2025
CVE-2025-63830 NOMISEC MEDIUM WRITEUP
CKFinder 1.4.3 - Stored Cross-Site Scripting via SVG File Upload
CKFinder 1.4.3 is vulnerable to Cross Site Scripting (XSS) in the File Upload function. An attacker can upload a crafted SVG containing active content.
CVSS 6.1