CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Veracode•added 2023/09/22 10:18 a.m.•14 views

Cross Site Scripting

xdsoft.net is vulnerable to Cross Site Scripting vulnerability. The vulnerability is due to improper sanitization of user input in the rich text editor component. This can be exploited by the attacker by injecting malicious input to execute Javascript on client side...

6.1CVSS6.7AI score0.00136EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2023/09/19 6:30 a.m.•29 views

Jodit Editor vulnerable to cross-site scripting

Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...

6.1CVSS6.1AI score0.00136EPSS

Exploits0References3Affected Software1

OSV•added 2023/09/19 6:30 a.m.•17 views

GHSA-95XR-CQ6H-VWR3 Jodit Editor vulnerable to cross-site scripting

Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...

6.1CVSS5.9AI score0.00136EPSS

Exploits0References3

NVD•added 2023/09/19 4:15 a.m.•12 views

CVE-2023-42399

Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...

6.1CVSS6AI score0.00136EPSS

Exploits0References3

Prion•added 2023/09/19 4:15 a.m.•12 views

Cross site scripting

Cross Site Scripting vulnerability in xdsoft.net Jodit Editor v.4.0.0-beta.86 allows a remote attacker to obtain sensitive information via the rich text editor component...

5.8CVSS5.9AI score0.00136EPSS

Exploits0References3Affected Software1

CVE•added 2023/09/19 12:0 a.m.•63 views

CVE-2023-42399

CVE-2023-42399 concerns the Jodit Editor (xdsoft.net) v4.0.0-beta.86, where a Cross‑Site Scripting flaw stems from improper sanitization in the rich text editor component. The vulnerability can allow a remote attacker to obtain sensitive information via the editor. Some connected sources (includi...

6.1CVSS5.9AI score0.00136EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by