You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
(Security Issue) Cross-site scripting (XSS) vulnerability in Froala Editor allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
#4760
Open
AlaaAl-Awadat opened this issue
Mar 17, 2024
· 0 comments
Cross-site scripting (XSS) vulnerability in Froala Editor allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
CVE-2023-42426 6.1 Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability with Medium severity found
The text was updated successfully, but these errors were encountered:
Dependency npm:froala-editor:4.1.4 is vulnerable
Cross-site scripting (XSS) vulnerability in Froala Editor allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
CVE-2023-42426 6.1 Improper Neutralization of Input During Web Page Generation ("Cross-site Scripting") vulnerability with Medium severity found
The text was updated successfully, but these errors were encountered: