Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cross-site scripting vulnerability in TinyMCE
Vulnerability Description
TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Tiny Technologies TinyMCE 跨站脚本漏洞
Vulnerability Description
Tiny Technologies TinyMCE是美国Tiny Technologies公司的一款富文本编辑器。 Tiny Technologies TinyMCE 5.6.0 之前版本存在跨站脚本漏洞,该漏洞源于允许远程攻击者将精心设计的 HTML 插入编辑器,从而导致在另一个用户的浏览器中执行任意 JavaScript。
CVSS Information
N/A
Vulnerability Type
N/A