CVE-2020-4061

Published July 2nd, 2020

View on NVD ↗

CVSS v3

3.7

LOW

CVSS v2

3.5

LOW

Affected

PROJECT

Description

In October from version 1.0.319 and before version 1.0.467, pasting content copied from malicious websites into the Froala richeditor could result in a successful self-XSS attack. This has been fixed in 1.0.467.

octobercms/october

Self-hosted CMS platform based on the Laravel PHP Framework.

GitHub

11.1K