CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-42371

Cross Site Scripting vulnerability in Summernote Rich Text Editor v.0.8.18 and before allows a remote attacker to execute arbitrary code via a crafted script to the insert link function in the editor component.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.3%

CVSS Severity

CVSS v3 Score 5.4

References

https://hacker.soarescorp.com/cve/2023-42371/
https://summernote.org/
https://hacker.soarescorp.com/cve/2023-42371/
https://summernote.org/

Products affected by CVE-2023-42371

Summernote » Rich Text Editor » Version: Any

cpe:2.3:a:summernote:rich_text_editor:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-42371

Products

Pricing

Contact Us