Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Review XSS vulnerabilities associated with TinyMCE #5

Open
drn05r opened this issue May 14, 2024 · 0 comments
Open

Review XSS vulnerabilities associated with TinyMCE #5

drn05r opened this issue May 14, 2024 · 0 comments
Assignees
@drn05r @fatchild
Labels
bug Something isn't working

Comments

@drn05r
Copy link
Contributor

drn05r commented May 14, 2024

Dependabot has reported several moderate XSS vulnerabilities with TinyMCE:

https://github.com/eprints/richtext/security/dependabot

We should review these and ideally fix them. It may be a simple case of upping the version of TinyMCE that richtext uses.
@drn05r drn05r added the bug Something isn't working label May 14, 2024
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@drn05r drn05r

@fatchild fatchild

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@drn05r @fatchild