jazzband/django-tinymce

Releases52

Frequency3 months 4 weeks

Last Release 8 months ago

Stars1.36K

TinyMCE integration for Django

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-21910 ↗	Jan 3, 2024Wednesday, 3 January 2024, 16:15	6.1 MEDIUM	—
TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser.