Vulnerabilities > Tiny > Tinymce > 4.9.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-03 | CVE-2024-21908 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE versions before 5.9.0 are affected by a stored cross-site scripting vulnerability. | 6.1 |
| 2024-01-03 | CVE-2024-21910 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. | 6.1 |
| 2024-01-03 | CVE-2024-21911 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. | 6.1 |
| 2023-11-15 | CVE-2023-48219 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE is an open source rich text editor. | 6.1 |
| 2023-10-19 | CVE-2023-45818 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE is an open source rich text editor. | 6.1 |
| 2023-10-19 | CVE-2023-45819 | Cross-site Scripting vulnerability in Tiny Tinymce TinyMCE is an open source rich text editor. | 6.1 |
| 2022-12-08 | CVE-2022-23494 | Cross-site Scripting vulnerability in Tiny Tinymce tinymce is an open source rich text editor. | 6.1 |
| 2020-08-14 | CVE-2020-12648 | Cross-site Scripting vulnerability in Tiny Tinymce A cross-site scripting (XSS) vulnerability in TinyMCE 5.2.1 and earlier allows remote attackers to inject arbitrary web script when configured in classic editing mode. | 4.3 |
| 2019-07-17 | CVE-2019-1010091 | Cross-site Scripting vulnerability in Tiny Tinymce tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization of Input During Web Page Generation. | 4.3 |