Simple College Website 1.0 SQL Injection / Code Execution

============================================================================================================================================= | Title : Simple College Website 1.0 WYSIWYG Settings Management Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

PT-2022-16015 · Editor.Js · Editor.Js

Name of the Vulnerable Software and Affected Versions: Editor.js versions prior to 2.26.0 Description: The issue concerns a code injection vulnerability via pasted input in Editor.js, a block-style editor. The processHTML method is vulnerable as it passes pasted input into the wrapper's innerHTML...