tinymce

Releases216

Frequency2 weeks 6 days

Last Release 23 days ago

Web based JavaScript HTML WYSIWYG editor control.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-21911 ↗	Jan 3, 2024Wednesday, 3 January 2024, 16:15	6.1 MEDIUM	—
TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.