Описание
TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | DNE | |
| lunar | DNE | |
| mantic | DNE | |
| noble | DNE |
Показывать по
10
Ссылки на источники
6.1 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.1
nvd
около 2 лет назад
TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.
CVSS3: 6.1
debian
около 2 лет назад
TinyMCE versions before 5.9.0 are affected by a stored cross-site scri ...
6.1 Medium
CVSS3