Froala: >> Froala Editor Security Vulnerabilities
A Cross-site scripting (XSS) vulnerability in Froala Editor v.4.1.1 allows attackers to execute arbitrary code via the Markdown component.
CVSS Score
6.1
EPSS Score
0.005
Published
2023-09-27
Cross-site scripting (XSS) vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
CVSS Score
6.1
EPSS Score
0.004
Published
2023-09-25
Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability.
CVSS Score
5.4
EPSS Score
0.01
Published
2023-09-14
A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor 3.1.0 allows attackers to execute arbitrary web scripts or HTML.
CVSS Score
6.1
EPSS Score
0.004
Published
2021-10-26
Froala WYSIWYG Editor 3.2.6-1 is affected by XSS due to a namespace confusion during parsing.
CVSS Score
5.4
EPSS Score
0.009
Published
2021-07-16
Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink creation module.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-04-05
Froala Editor before 3.2.2 allows XSS via pasted content.
CVSS Score
6.1
EPSS Score
0.004
Published
2020-10-02
Froala Editor before 3.2.3 allows XSS.
CVSS Score
6.1
EPSS Score
0.009
Published
2020-07-07