Description
Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability.
Remediation
References
https://hacker.soarescorp.com/cve/2023-41592/
https://owasp.org/Top10/A03_2021-Injection/
https://owasp.org/www-project-top-ten/
Related Vulnerabilities
CVE-2020-10714 Vulnerability in maven package org.wildfly.security:wildfly-elytron
CVE-2023-46495 Vulnerability in npm package @evershop/evershop
CVE-2022-1295 Vulnerability in npm package fullpage.js
CVE-2019-11003 Vulnerability in npm package materialize-css
CVE-2023-44487 Vulnerability in maven package io.helidon.http:helidon-http-http2