CVE-2024-21911

Published: Jan 3, 2024
Updated: Jan 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-21911" target="_blank" rel="noopener"> CVE-2024-21911
Severity: Medium
Exploit:

TinyMCE versions before 5.6.0 are affected by a stored cross-site scripting vulnerability. An unauthenticated and remote attacker could insert crafted HTML into the editor resulting in arbitrary JavaScript execution in another user's browser.