CVE-2022-25038

May 31, 2024, 7:14 p.m.

Tags

cve@mitre.org
2024-05-31
CVE-2022-25038

Product(s) Impacted

wanEditor

  • 4.7.11

Description

wanEditor v4.7.11 was discovered to contain a cross-site scripting (XSS) vulnerability via the video upload function.

Weaknesses

Date

Published: May 31, 2024, 4:15 p.m.

Last Modified: May 31, 2024, 7:14 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

https://gist.github.com/Mdxjj/800f05f10a98591aa2cf3558f53f088f
cve@mitre.org
https://github.com/wangeditor-team/wangEditor/issues/3872
cve@mitre.org