3 matches found
CVE-2020-22864
A cross site scripting XSS vulnerability in the Insert Video function of Froala WYSIWYG Editor 3.1.0 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22864
creationtimestamp| type| source ---|---|--- 2021-10-27 02:15:20+00:00| seen| https://t.me/cibsecurity/31258...
CVE-2020-22864
CVE-2020-22864 concerns Froala WYSIWYG Editor, specifically the Insert Video function in version 3.1.0, where a cross-site scripting (XSS) vulnerability exists. The connected documents attribute the root cause to insufficient sanitization of user input in the Insert Video flow (e.g., html.insert)...