Security for everyone

CVE-2022-40879 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in kkFileView affects v. 4.1.0.


Short Info



Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one




KKFileview v4.1.0 is a file management and viewing tool designed for web-based applications. It is widely used to view various file types such as images, documents, videos, and other multimedia content. The tool offers multiple features such as file browsing, opening, downloading, and uploading files. It is a handy tool for organizations that require quick and easy access to their files.

However, a critical vulnerability has been detected in the tool, which could potentially put the confidential data of users at risk. The vulnerability is identified as CVE-2022-40879 and is a form of cross-site scripting (XSS) attack. The vulnerability can be exploited by injecting malicious scripts into fields such as the 'errorMsg' parameter.

When exploited, the vulnerability can give attackers unauthorized access to sensitive data, such as login credentials, financial information, and personal identification. The attacker can use the injection to steal user data, manipulate the website, spread malware or launch further attacks on other targets.

Thanks to the pro features of the platform, organizations can quickly and easily learn about vulnerabilities in their digital assets. offers comprehensive vulnerability analysis and provides real-time updates about the latest security threats. With the help of their reliable platform, organizations can mitigate security risks and safeguard their confidential data. By taking sensible preventive measures and availing the pro features of, users can ensure that their digital assets operate safely and securely.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture