25 matches found
CVE-2022-23461
Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds...
EUVD-2023-2474
Malicious code in bioql PyPI...
EUVD-2022-6682
Malicious code in bioql PyPI...
CVE-2023-42399
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
Jodit Editor vulnerable to cross-site scripting
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
GHSA-95XR-CQ6H-VWR3 Jodit Editor vulnerable to cross-site scripting
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
CVE-2023-42399
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
CVE-2023-42399
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
CVE-2023-42399
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
Jodit Editor Cross-Site Scripting Vulnerability
Jodit Editor is an excellent WYSIWYG editor written in pure TypeScript by Valeriy Personal Developers. A cross-site scripting vulnerability exists in Jodit Editor version v.4.0.0-beta.86, which originates from a vulnerability that could allow a remote attacker to gain access to sensitive...
CVE-2023-42399
CVE-2023-42399 concerns the Jodit Editor (xdsoft.net) v4.0.0-beta.86, where a Cross‑Site Scripting flaw stems from improper sanitization in the rich text editor component. The vulnerability can allow a remote attacker to obtain sensitive information via the editor. Some connected sources (includi...
CVE-2023-42399
Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...
PT-2023-28329 · Unknown · Jodit Editor
Name of the Vulnerable Software and Affected Versions: Jodit Editor version 4.0.0-beta.86 Description: The issue allows a remote attacker to obtain sensitive information via the rich text editor component. This is due to a Cross Site Scripting vulnerability. Recommendations: For Jodit Editor...
Jodit Editor Cross-Site Scripting Vulnerability
A cross-site scripting vulnerability exists in Jodit Editor 3.0.0 and later, and 3.20.4 and earlier, due to a lack of effective filtering and escaping of user-supplied data when pasting specially constructed input. An attacker could use this vulnerability to launch a cross-site scripting attack...
Cross-site Scripting (XSS)
jodit is vulnerable to cross-site scripting. The library does not properly escape specially constructed input through stripTags when a user copy-pastes content from a page controlled by the attacker, which allows malicious javascript execution on victim's browser...
@chumager/itdfw-site-base (>=2.4.0 <=2.4.5), @simpleview/sv-mosaic (>=28.0.0-staging-2b964a <=38.0.1-62799cabb) +4 more potentially affected by CVE-2022-23461 via jodit (>=3.10.2 <=3.23.3)
jodit NPM version =3.10.2, =2.4.0, =28.0.0-staging-2b964a, =1.0.15, =1.0.0, =1.5.1, =1.4.58, =1.6.90 Source cves: CVE-2022-23461 Source advisory: OSV:GHSA-42HX-VRXX-5R6V...
Jodit Editor vulnerable to Cross-site Scripting
Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds...
GHSA-42HX-VRXX-5R6V Jodit Editor vulnerable to Cross-site Scripting
Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds...
CVE-2022-23461
Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds...
Design/Logic Flaw
Jodit Editor is a WYSIWYG editor written in pure TypeScript without the use of additional libraries. Jodit Editor is vulnerable to XSS attacks when pasting specially constructed input. This issue has not been fully patched. There are no known workarounds...