Описание
Cross-site Scripting in Froala Editor
Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink creation module.
Пакеты
Наименование
froala-editor
npm
Затронутые версииВерсия исправления
<= 3.2.6
Отсутствует
Связанные уязвимости
CVSS3: 6.1
nvd
почти 5 лет назад
Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink creation module.