0.001 Low
EPSS
Percentile
30.2%
A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor allows attackers to execute arbitrary web scripts or HTML.
github.com/418sec/wysiwyg-editor/pull/1
github.com/froala/wysiwyg-editor
github.com/froala/wysiwyg-editor/issues/3880
github.com/froala/wysiwyg-editor/pull/3911
github.com/froala/wysiwyg-editor/releases/tag/v4.0.11
nvd.nist.gov/vuln/detail/CVE-2020-22864
www.youtube.com/watch?v=WE3b1iSnWJY