Filtered by vendor Froala
Subscriptions
Total
9 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2023-43263 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
A Cross-site scripting (XSS) vulnerability in Froala Editor v.4.1.1 allows attackers to execute arbitrary code via the Markdown component. | ||||
CVE-2023-42426 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
Cross-site scripting (XSS) vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component. | ||||
CVE-2023-41592 | 1 Froala | 1 Froala Editor | 2024-11-21 | 5.4 Medium |
Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability. | ||||
CVE-2021-30109 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink creation module. | ||||
CVE-2021-28114 | 1 Froala | 1 Froala Editor | 2024-11-21 | 5.4 Medium |
Froala WYSIWYG Editor 3.2.6-1 is affected by XSS due to a namespace confusion during parsing. | ||||
CVE-2020-26523 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
Froala Editor before 3.2.2 allows XSS via pasted content. | ||||
CVE-2020-22864 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor 3.1.0 allows attackers to execute arbitrary web scripts or HTML. | ||||
CVE-2019-19935 | 1 Froala | 1 Froala Editor | 2024-11-21 | 6.1 Medium |
Froala Editor before 3.2.3 allows XSS. | ||||
CVE-2024-51434 | 1 Froala | 1 Wysiwyg Editon | 2024-11-08 | 6.1 Medium |
Inconsistent <plaintext> tag parsing allows for XSS in Froala WYSIWYG editor 4.3.0 and earlier. |
Page 1 of 1.