Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

872 matches found

OSV
OSVadded 2024/01/03 4:15 p.m.12 views

CVE-2024-21910

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser...

6.1CVSS6.1AI score
Exploits0References6
OSV
OSVadded 2024/01/03 4:15 p.m.38 views

CVE-2024-21911

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6AI score
Exploits0References5
OSV
OSVadded 2024/01/03 4:15 p.m.6 views

CVE-2024-21908

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6AI score
Exploits0References4
NVD
NVDadded 2024/01/03 4:15 p.m.8 views

CVE-2024-21908

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6AI score0.00517EPSS
Exploits1References4
UbuntuCve
UbuntuCveadded 2024/01/03 4:15 p.m.30 views

CVE-2024-21910

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser...

6.1CVSS6.5AI score0.04084EPSS
Exploits1References7
UbuntuCve
UbuntuCveadded 2024/01/03 4:15 p.m.20 views

CVE-2024-21911

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6.6AI score0.01446EPSS
Exploits1References6
Prion
Prionadded 2024/01/03 4:15 p.m.9 views

Cross site scripting

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

5.8CVSS6.2AI score0.00517EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2024/01/03 4:15 p.m.1 views

UBUNTU-CVE-2024-21908

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6AI score0.00517EPSS
Exploits1References6
Prion
Prionadded 2024/01/03 4:15 p.m.9 views

Cross site scripting

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

5.8CVSS6.2AI score0.01446EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCveadded 2024/01/03 4:15 p.m.35 views

CVE-2024-21908

TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6.6AI score0.00517EPSS
Exploits1References5
Prion
Prionadded 2024/01/03 4:15 p.m.16 views

Cross site scripting

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser...

5.8CVSS6.7AI score0.04084EPSS
Exploits1References6Affected Software1
OSV
OSVadded 2024/01/03 4:15 p.m.1 views

UBUNTU-CVE-2024-21911

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.1CVSS6AI score0.01446EPSS
Exploits1References7
OSV
OSVadded 2024/01/03 4:15 p.m.0 views

UBUNTU-CVE-2024-21910

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser...

6.1CVSS6AI score0.04084EPSS
Exploits1References8
CVE
CVEadded 2024/01/03 3:59 p.m.66 views

CVE-2024-21911

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated, remote attacker could insert crafted HTML into the editor, leading to arbitrary JavaScript execution in another user’s browser. The CVE entry lists a base score of 6.1 (Medium). Remediat...

6.1CVSS5.9AI score0.01446EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVEadded 2024/01/03 3:59 p.m.22 views

CVE-2024-21911

Removed by vendor...

6.1CVSS6.2AI score0.01446EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2024/01/03 3:59 p.m.13 views

CVE-2024-21911 Cross-site scripting vulnerability in TinyMCE

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6AI score0.01446EPSS
Exploits1References5
Cvelist
Cvelistadded 2024/01/03 3:59 p.m.16 views

CVE-2024-21911 Cross-site scripting vulnerability in TinyMCE

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser...

6.2AI score0.01446EPSS
Exploits1References5
Cvelist
Cvelistadded 2024/01/03 3:55 p.m.22 views

CVE-2024-21910 Cross-site scripting vulnerability in TinyMCE plugins

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser...

6.4AI score0.04084EPSS
Exploits1References6
Debian CVE
Debian CVEadded 2024/01/03 3:55 p.m.22 views

CVE-2024-21910

Removed by vendor...

6.1CVSS6.2AI score0.04084EPSS
Exploits1
CVE
CVEadded 2024/01/03 3:55 p.m.68 views

CVE-2024-21910

CVE-2024-21910 affects TinyMCE plugins with versions before 5.10.0. The issue is a cross-site scripting vulnerability: a remote, unauthenticated attacker can craft image or link URLs that cause execution of arbitrary JavaScript in an editing user’s browser. The description in connected sources co...

6.1CVSS6.1AI score0.04084EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder