Vulnerabilities

CVE-2024-21908

by Fred · 03/01/2024

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user’s browser.

More information : https://github.com/advisories/GHSA-5h9g-x5rv-25wg

Similar

Tags: Cybersecurity Alert