Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-site scripting vulnerability in TinyMCE
Vulnerability Description
TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Tiny Technologies TinyMCE 跨站脚本漏洞
Vulnerability Description
Tiny Technologies TinyMCE是美国Tiny Technologies公司的一款富文本编辑器。 Tiny Technologies TinyMCE 5.9.0 之前版本存在跨站脚本漏洞,该漏洞源于经身份验证的远程攻击者可以将精心设计的 HTML 插入编辑器,从而导致在用户的浏览器中执行任意 JavaScript。
CVSS Information
N/A
Vulnerability Type
N/A