Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Cross SIte Scripting (XSS) vulnerability exists in KindEdit via a Google search inurl:/examples/uploadbutton.html and then the .html file on the website that uses this editor (the file suffix is allowed).