Johndatserakis File-upload-with-preview — known CVE vulnerabilities
Every CVE whose affected-product data names Johndatserakis File-upload-with-preview, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2021-23439 — CVSS 4.2 (medium): This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a…