Baidu umeditor suffers from cross-site scripting vulnerability
UMeditor, or UM for short, is an online rich text editor. A cross-site scripting vulnerability exists in Baidu umeditor. The program fails to filter user-supplied input, allowing an attacker to construct a malicious web page and trick users into parsing it to execute arbitrary code...