CVE-2024-21910

Published: Jan 3, 2024
Updated: Jan 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-21910" target="_blank" rel="noopener"> CVE-2024-21910
Severity: Medium
Exploit:

TinyMCE versions before 5.10.0 are affected by a cross-site scripting vulnerability. A remote and unauthenticated attacker could introduce crafted image or link URLs that would result in the execution of arbitrary JavaScript in an editing user's browser.