CVE-2017-15719

2018-03-12T13:29:00
ID CVE-2017-15719
Type cve
Reporter security@apache.org
Modified 2019-06-12T14:37:00

Description

In Wicket jQuery UI 6.28.0 and earlier, 7.9.1 and earlier, and 8.0.0-M8 and earlier, a security issue has been discovered in the WYSIWYG editor that allows an attacker to submit arbitrary JS code to WYSIWYG editor.