tinymce/tinymce Security Advisories for 5.x-dev (2)
-
[MEDIUM] TinyMCE Cross-Site Scripting (XSS) vulnerability in handling iframes
PKSA-s5r2-shvb-ydth CVE-2024-29203 GHSA-438c-3975-5x3f
Affected version: <6.8.1
Reported by:
GitHub -
[MEDIUM] TinyMCE Cross-Site Scripting (XSS) vulnerability in handling external SVG files through Object or Embed elements
PKSA-hdg2-6rxt-d4qn CVE-2024-29881 GHSA-5359-pvf2-pw78
Affected version: <7.0.0
Reported by:
GitHub