Lucene search
China National Vulnerability DatabaseCNVD-2022-88814HistorySep 28, 2022 - 12:00 a.m.
Jodit Editor Cross-Site Scripting Vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
34.2%
A cross-site scripting vulnerability exists in Jodit Editor 3.0.0 and later, and 3.20.4 and earlier, due to a lack of effective filtering and escaping of user-supplied data when pasting specially constructed input. An attacker could use this vulnerability to launch a cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| valeriy jodit editor >=3.0.0, | le | 3.20.4 |
Related
veracode
veracode
Cross-site Scripting (XSS)
2022-09-27 20:58:01
cve
cve
CVE-2022-23461
2022-09-24 03:15:08
prion
prion
Design/Logic Flaw
2022-09-24 03:15:00
cvelist
cvelist
CVE-2022-23461 Cross-Site Scripting (XSS) in Jodit Editor
2022-09-24 03:05:08
nvd
nvd
CVE-2022-23461
2022-09-24 03:15:08
osv
osv
CVE-2022-23461
2022-09-24 03:15:08
Jodit Editor vulnerable to Cross-site Scripting
2022-09-25 00:00:15
github
github
Jodit Editor vulnerable to Cross-site Scripting
2022-09-25 00:00:15