Cross site scripting in froala-editor
Moderate severity
GitHub Reviewed
Published
Oct 28, 2021
to the GitHub Advisory Database
•
Updated Feb 13, 2023
Description
Published by the National Vulnerability Database
Oct 26, 2021
Reviewed
Oct 28, 2021
Published to the GitHub Advisory Database
Oct 28, 2021
Last updated
Feb 13, 2023
A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor allows attackers to execute arbitrary web scripts or HTML.
References