Description
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component.
Recommendation
No fix is available yet. Followings are affected versions:
- = 4.0.0-beta.86
References
Related Issues
- editor.md vulnerable to Cross-site Scripting - CVE-2023-29641
- Jodit Editor vulnerable to Cross-site Scripting (GHSA-42hx-vrxx-5r6v) - CVE-2022-23461
- Froala Editor Cross-site Scripting vulnerability - CVE-2023-41592
- Pandao Editor.md vulnerable to cross-site scripting (XSS) in iframe src parameter - CVE-2020-19697
- Tags:
- npm
- jodit
Anything's wrong? Let us know Last updated on November 04, 2023