Headline
GHSA-4wh3-3wf2-39m9: Summernote vulnerable to cross-site scripting
Cross Site Scripting vulnerability in Summernote v.0.8.18 and before allows a remote attacker to execute arbtirary code via a crafted payload to the codeview parameter.
Summernote vulnerable to cross-site scripting
Moderate severity GitHub Reviewed Published Apr 11, 2024 to the GitHub Advisory Database • Updated Apr 12, 2024