8 matches found
EUVD-2018-10619
Malware in sbrugna...
xhEditor Cross-Site Scripting Vulnerability
xhEditor is an online visual HTML editor based on jQuery development . A cross-site scripting vulnerability exists in xhEditor version 1.2.2. A remote attacker can exploit this vulnerability to execute arbitrary code or HTML with the help of JavaScript code in the SRC attribute of the IFRAME...
CVE-2018-18909
xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view...
CVE-2018-18909
xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view...
CVE-2018-18909
xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view...
CVE-2018-18909
The CVE-2018-18909 entry applies to xhEditor (version 1.2.2). The underlying issue is a cross-site scripting (XSS) vulnerability: an attacker can inject JavaScript code in the SRC attribute of an IFRAME element within the editor’s source-code view. This is evidenced by multiple connected records ...
Xheditor 1.1.12 /demos/upload.php 文件上传漏洞
No description provided by source...
xheditor online editor lead to stored xss-vulnerability warning-the black bar safety net
Brief description: The issue before the hair, http://tmxk.org/thread-411-1-1.html that This is at the limit of the Source mode in the case appearxss. Detailed description: First, the official website deomo for testing. ! ! ! Test example the ! Description of case Soufun, phpsoso, the kingcms...