Mycolorway: >> Simditor Security Vulnerabilities
Simditor through 2.3.21 allows DOM XSS via an onload attribute within a malformed SVG element.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-05-13
Simditor v2.3.11 allows XSS via crafted use of svg/onload=alert in a TEXTAREA element, as demonstrated by Firefox 54.0.1.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-01-31