Vulnerabilities

CVE-2024-21911

by Fred · 03/01/2024

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user’s browser.

More information : https://github.com/advisories/GHSA-w7jx-j77m-wp65

Similar

Tags: Cybersecurity Alert