Vulnerability — CVE-2024-21911

CVE-2024-21911

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-21911
Description:: TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.
Last updated date:: 01/08/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/08/2024
Reference url to background: https://github.com/advisories/GHSA-w7jx-j77m-wp65

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/08/2024
Reference url to background: https://github.com/tinymce/tinymce/security/advisories/GHSA-w7jx-j77m-wp65