Description
Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability.
Remediation
References
https://hacker.soarescorp.com/cve/2023-41592/
https://owasp.org/Top10/A03_2021-Injection/
https://owasp.org/www-project-top-ten/
Related Vulnerabilities
CVE-2019-10249 Vulnerability in maven package org.eclipse.xtext:org.eclipse.xtext.maven.parent
CVE-2021-21353 Vulnerability in npm package pug
CVE-2022-28366 Vulnerability in maven package net.sourceforge.htmlunit:neko-htmlunit
CVE-2021-21341 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2021-41189 Vulnerability in maven package org.dspace:dspace-api