CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23 matches found

Snyk•added 2025/10/21 7:37 a.m.•1 views

Malicious Package

Overview @wangeditoreditor/editor is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this...

9.8CVSS6.8AI score

Exploits0References2

EUVD•added 2025/10/09 12:36 p.m.•2 views

EUVD-2025-33339

Malicious code in @wangeditoreditor/editor npm...

6.6AI score

Exploits0

OSSF Malicious Packages•added 2025/10/09 12:36 p.m.•2 views

Malicious code in @wangeditor_editor/editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware eb7e992b391fd117aafc0f2ac03e69c68f62cbd639b2a71025b8680cc4a17a55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.8AI score

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-28308

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00295EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 3:21 a.m.•4 views

CVE-2023-24251

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

5.4CVSS6.2AI score0.00295EPSS

Exploits1References1

Github Security Blog•added 2024/05/31 6:31 p.m.•40 views

wangEditor was discovered to contain a cross-site scripting (XSS) vulnerability via the image upload function

There is a cross-site scripting XSS issue in wangEditor via the image upload function in version 4.7.11. This issue has been fixed in version 4.7.12...

5.4CVSS5.7AI score0.0025EPSS

Exploits0References6Affected Software1

CNNVD•added 2024/05/31 12:0 a.m.•2 views

wangEditor Security Vulnerability

wangEditor is an open source Web rich text editor from wangEditor Inc. A security vulnerability exists in wangEditor version 4.7.11, which stems from vulnerability to cross-site scripting XSS attacks...

5.4CVSS5.9AI score0.0025EPSS

Exploits0References3

CNNVD•added 2024/05/31 12:0 a.m.•1 views

wangEditor Security Vulnerability

6.1CVSS5.9AI score0.00364EPSS

Exploits0References3

ATTACKERKB•added 2023/12/11 9:15 p.m.•0 views

CVE-2023-49494

DedeCMS v5.7.111 was discovered to contain a reflective cross-site scripting XSS vulnerability via the component selectmediapostwangEditor.php...

6.1CVSS6.2AI score0.024EPSS

Exploits1References4

Positive Technologies•added 2023/12/11 12:0 a.m.•1 views

PT-2023-31247 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.111 Description: A reflective cross-site scripting XSS issue was discovered in DedeCMS via the component select media post wangEditor.php. This allows for potential XSS attacks. Recommendations: For DedeCMS version 5.7.111...

6.1CVSS5.9AI score0.024EPSS

Exploits1References7

NVD•added 2023/02/27 4:15 p.m.•9 views

CVE-2023-24251

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

5.4CVSS5.4AI score0.00295EPSS

Exploits1References1

OSV•added 2023/02/27 4:15 p.m.•1 views

CVE-2023-24251

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

5.4CVSS6AI score

Exploits0References1

Prion•added 2023/02/27 4:15 p.m.•14 views

Cross site scripting

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

4.9CVSS5.4AI score0.00295EPSS

Exploits1References1Affected Software1

CVE•added 2023/02/27 12:0 a.m.•42 views

CVE-2023-24251

CVE-2023-24251 affects WangEditor v5; an XSS vulnerability is exploitable via the /dist/index.js component. The NVD metrics describe a network-accessible issue with low impact (C/L, I/L) and user interaction required. Connected sources corroborate a cross-site scripting flaw in WangEditor v5 and ...

5.4CVSS5.3AI score0.00295EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/02/27 12:0 a.m.•6 views

CVE-2023-24251

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

5.4AI score0.00295EPSS

Exploits1References1

CNNVD•added 2023/02/27 12:0 a.m.•2 views

wangEditor 跨站脚本漏洞

wangEditor is an open source Web rich text editor from wangEditor Inc. A security vulnerability exists in version v5 of wangEditor, which stems from a cross-site scripting XSS vulnerability...

5.4CVSS5.3AI score0.00295EPSS

Exploits1References3

Positive Technologies•added 2023/02/27 12:0 a.m.•2 views

PT-2023-19499 · Waneditor · Waneditor

Name of the Vulnerable Software and Affected Versions: WangEditor version 5 Description: A cross-site scripting XSS issue was found in WangEditor via the component /dist/index.js. Recommendations: For WangEditor version 5, update to a newer version that contains a fix for this issue...

5.4CVSS5.2AI score0.00295EPSS

Exploits1References2

Cvelist•added 2023/02/27 12:0 a.m.•10 views

CVE-2023-24251

WangEditor v5 was discovered to contain a cross-site scripting XSS vulnerability via the component /dist/index.js...

5.6AI score0.00295EPSS

Exploits1References1

CNVD•added 2021/05/02 12:0 a.m.•2 views

XSS vulnerability in wangEditor

wangEditor is a Web rich text editor . An XSS vulnerability exists in wangEditor, which can be exploited by attackers to obtain sensitive information such as user cookies...

5.8AI score

Exploits0

vulnersOsv•added 2020/09/02 9:20 p.m.•1 views

360shitu (=0.1.0), @7revor/item-schema-sdk (=0.0.0) +929 more potentially affected by unknown CVE via wangeditor (>=2.1.23 <=4.7.9)

wangeditor NPM version =2.1.23, =1.0.27, =1.0.11, =3.1.3, =1.0.8, =0.1.8, =1.0.0, =0.0.22, =0.0.4-alpha.0, =0.0.1, =0.0.27, =0.0.103 and more Source cves: unknown CVE Source advisory: OSV:GHSA-G7MW-5CQ6-FV82...

5.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by