漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Jodit Editor: Mutation XSS in jodit clean-html via a MathML/style rawtext carrier
Vulnerability Description
Jodit Editor is a WYSIWYG editor with written in pure TypeScript file and image editing capabilities. In versions prior to 4.12.28, the built-in clean-html sanitizer can be bypassed by a MathML/<style> carrier that hides a dangerous element from the sanitizer's element walk, so a no-interaction event handler survives into the editor value, potentially causing Mutation XSS. When an application supplies attacker-influenced HTML to the editor's value-set or insertion paths, the sanitized output still contains a live <img ... onload=...> (or another non-onerror handler such as onfocus). A consumer that renders that output (element.innerHTML = editor.value) executes the handler with no user interaction. This issue has been fixed in version 4.12.28.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Valerii jodit 跨站脚本漏洞
Vulnerability Description
Valerii jodit是Valerii个人开发者的一款网页文本编辑器插件。 Valerii jodit 4.12.28之前版本存在跨站脚本漏洞,该漏洞源于内置clean-html净化器可被绕过,导致事件处理器存活于编辑器值中,可能造成Mutation XSS。
CVSS Information
N/A
Vulnerability Type
N/A