CVE-2024-29881

CVSS V2 None CVSS V3 None
Description
TinyMCE is an open source rich text editor. A cross-site scripting (XSS) vulnerability was discovered in TinyMCE’s content loading and content inserting code. A SVG image could be loaded though an `object` or `embed` element and that image could potentially contain a XSS payload. This vulnerability is fixed in 6.8.1 and 7.0.0.
Overview
  • CVE ID
  • CVE-2024-29881
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-03-26T13:31:15.375Z
  • Last Modified Date
  • 2024-03-26T13:31:15.375Z
History
Created Old Value New Value Data Type Notes
2024-06-26 02:34:53 Added to TrackCVE