{"containers":{"cna":{"affected":[{"product":"Kind Editor","vendor":"Kind Editor Inc.","versions":[{"lessThan":"4.1.12","status":"affected","version":"unspecified","versionType":"custom"}]}],"dateAssigned":"2017-06-14T00:00:00.000Z","descriptions":[{"lang":"en","value":"Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/upload_json.php does not check authentication before allow users to upload files."}],"problemTypes":[{"descriptions":[{"description":"Arbitrary File Upload","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-09-14T13:00:00.000Z","orgId":"461b2335-328f-427d-ae3d-eff7d6814455","shortName":"larry_cashdollar"},"references":[{"tags":["x_refsource_MISC"],"url":"https://github.com/kindsoft/kindeditor"},{"tags":["x_refsource_MISC"],"url":"http://www.vapidlabs.com/advisory.php?v=195"},{"tags":["x_refsource_MISC"],"url":"http://kindeditor.org"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"larry0@me.com","DATE_ASSIGNED":"2017-06-14","ID":"CVE-2017-1002024","REQUESTER":"kurt@seifried.org","STATE":"PUBLIC","UPDATED":"2017-08-10T14:41Z"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Kind Editor","version":{"version_data":[{"version_affected":"<","version_value":"4.1.12"}]}}]},"vendor_name":"Kind Editor Inc."}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Vulnerability in web application Kind Editor v4.1.12, kindeditor/php/upload_json.php does not check authentication before allow users to upload files."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Arbitrary File Upload"}]}]},"references":{"reference_data":[{"name":"https://github.com/kindsoft/kindeditor","refsource":"MISC","url":"https://github.com/kindsoft/kindeditor"},{"name":"http://www.vapidlabs.com/advisory.php?v=195","refsource":"MISC","url":"http://www.vapidlabs.com/advisory.php?v=195"},{"name":"http://kindeditor.org","refsource":"MISC","url":"http://kindeditor.org"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T22:00:41.680Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://github.com/kindsoft/kindeditor"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.vapidlabs.com/advisory.php?v=195"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://kindeditor.org"}]}]},"cveMetadata":{"assignerOrgId":"461b2335-328f-427d-ae3d-eff7d6814455","assignerShortName":"larry_cashdollar","cveId":"CVE-2017-1002024","datePublished":"2017-09-14T13:00:00.000Z","dateReserved":"2017-09-14T00:00:00.000Z","dateUpdated":"2024-09-17T04:23:59.944Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}