CVE-2018-19048

Published
View on NVD ↗
CVSS v3
N/A
CVSS v2
4.3
MEDIUM
Affected
2
PROJECTS

Description

Simditor through 2.3.21 allows DOM XSS via an onload attribute within a malformed SVG element.

mycolorway/simditor
mycolorway/simditor
An Easy and Fast WYSIWYG Editor
GitHubGitHub
5.01K
hkglue/simditor_dom_xss
hkglue/simditor_dom_xss
GitHubGitHub