Vulnerabilities > Froala > Froala Editor > 3.1.0

DATE CVE VULNERABILITY TITLE RISK
2021-10-26 CVE-2020-22864 Cross-site Scripting vulnerability in Froala Editor 3.1.0
A cross site scripting (XSS) vulnerability in the Insert Video function of Froala WYSIWYG Editor 3.1.0 allows attackers to execute arbitrary web scripts or HTML.
network
low complexity
froala CWE-79
6.1
6.1
2021-07-16 CVE-2021-28114 Cross-site Scripting vulnerability in Froala Editor
Froala WYSIWYG Editor 3.2.6-1 is affected by XSS due to a namespace confusion during parsing.
network
low complexity
froala CWE-79
5.4
5.4
2020-10-02 CVE-2020-26523 Cross-site Scripting vulnerability in Froala Editor
Froala Editor before 3.2.2 allows XSS via pasted content.
network
low complexity
froala CWE-79
6.1
6.1
2020-07-07 CVE-2019-19935 Cross-site Scripting vulnerability in Froala Editor
Froala Editor before 3.2.3 allows XSS.
network
low complexity
froala CWE-79
6.1
6.1