Security
Headlines

Headlines Latest CVEs

Headline

GHSA-42hx-vrxx-5r6v: Jodit Editor vulnerable to Cross-site Scripting

Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds.

2 years ago

Jodit Editor vulnerable to Cross-site Scripting

Moderate severity GitHub Reviewed Published Sep 25, 2022 • Updated Sep 27, 2022

Related news

CVE-2022-23461: GHSL-2022-030: Cross-Site Scripting (XSS) in Jodit Editor 3 - CVE-2022-23461

Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds.

2 years ago

#xss #vulnerability #web #microsoft #git #java

ghsa: Latest News

GHSA-w5rq-g9r6-vrcg: @dapperduckling/keycloak-connector-server has Reflected XSS Vulnerability in Authentication Flow URL Handling

49 minutes ago

GHSA-q4xm-6fjc-5f6w: sigstore-java has vulnerability with bundle verification

1 hour ago

GHSA-v7vm-rhmg-8j2r: Password Policy Bypass Vulnerability in Fides Webserver User Accept Invite API

1 hour ago

GHSA-2xcc-vm3f-m8rw: @lobehub/chat Server Side Request Forgery vulnerability

2 hours ago

GHSA-486g-47cc-8wxf: aiocpa contains credential harvesting code

19 hours ago