Vulnerabilities > Froala > Froala Editor > 4.1.1

DATE CVE VULNERABILITY TITLE RISK
2023-09-27 CVE-2023-43263 Cross-site Scripting vulnerability in Froala Editor 4.1.1
A Cross-site scripting (XSS) vulnerability in Froala Editor v.4.1.1 allows attackers to execute arbitrary code via the Markdown component.
network
low complexity
froala CWE-79
6.1
6.1
2023-09-25 CVE-2023-42426 Cross-site Scripting vulnerability in Froala Editor 4.1.1
Cross-site scripting (XSS) vulnerability in Froala Froala Editor v.4.1.1 allows remote attackers to execute arbitrary code via the 'Insert link' parameter in the 'Insert Image' component.
network
low complexity
froala CWE-79
6.1
6.1
2023-09-14 CVE-2023-41592 Cross-site Scripting vulnerability in Froala Editor
Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability.
network
low complexity
froala CWE-79
5.4
5.4