CVE-2022-25037

May 31, 2024, 7:14 p.m.

Tags

cve@mitre.org
2024-05-31
CVE-2022-25037

Product(s) Impacted

wanEditor

  • 4.7.11
  • 4.7.12
  • 5

Description

An issue in wanEditor v4.7.11 and fixed in v.4.7.12 and v.5 was discovered to contain a cross-site scripting (XSS) vulnerability via the image upload function.

Weaknesses

Date

Published: May 31, 2024, 4:15 p.m.

Last Modified: May 31, 2024, 7:14 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gist.github.com/Mdxjj/5cf0a31e8abf24ed688ceb5b3543516d
cve@mitre.org
https://github.com/wangeditor-team/wangEditor/issues/3870
cve@mitre.org