Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm tinymce Security Advisories
Browse all Security Advisories for npm tinymce
Loading...
Moderate
Ecosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: 5 months ago
GSA_kwCzR0hTQS05aGN2LWo5cHYtcW1waM4AA9LE
TinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp optionEcosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: 5 months ago
Moderate
Ecosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: 5 months ago
GSA_kwCzR0hTQS13OWp4LTRnNmctcnA3eM4AA9LD
TinyMCE Cross-Site Scripting (XSS) vulnerability using noscript elementsEcosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: 5 months ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 8 months ago
GSA_kwCzR0hTQS00MzhjLTM5NzUtNXgzZs4AA6Te
TinyMCE Cross-Site Scripting (XSS) vulnerability in handling iframesEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 8 months ago
Moderate
Ecosystems: nuget, npm, packagist
Packages: TinyMCE, tinymce, tinymce/tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 8 months ago
GSA_kwCzR0hTQS01MzU5LXB2ZjItcHc3OM4AA6Td
TinyMCE Cross-Site Scripting (XSS) vulnerability in handling external SVG files through Object or Embed elementsEcosystems: nuget, npm, packagist
Packages: TinyMCE, tinymce, tinymce/tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 8 months ago
Moderate
Ecosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
GSA_kwCzR0hTQS12NjI2LXI3NzQtajdmOM4AA3Mj
TinyMCE vulnerable to mutation Cross-site Scripting via special characters in unescaped text nodesEcosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
GSA_kwCzR0hTQS1oZ3F4LXIyaHAtanIzOM4AA2kG
TinyMCE XSS vulnerability in notificationManager.open APIEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
GSA_kwCzR0hTQS12NjVyLXAzdnYtampmds4AA2kF
TinyMCE mXSS vulnerability in undo/redo, getContent API, resetContent API, and Autosave pluginEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 1 year ago
Moderate
Ecosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: almost 2 years ago
GSA_kwCzR0hTQS1nZzhyLXhqd3EtNHc5Ms4AAwOk
Cross-site scripting vulnerability in TinyMCE alertsEcosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: almost 2 years ago
Moderate
Ecosystems: pypi, nuget, packagist, npm
Packages: django-tinymce, TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 3 years ago
GSA_kwCzR0hTQS1yOGhtLXc1Zjctd2ozOc0Wzg
Cross-site scripting vulnerability in TinyMCE pluginsEcosystems: pypi, nuget, packagist, npm
Packages: django-tinymce, TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 3 years ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 3 years ago
GSA_kwCzR0hTQS01aDlnLXg1cnYtMjV3Z80WrQ
Cross-site scripting vulnerability in TinyMCEEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: about 3 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2bTgtaGhnci1qY2pw
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc3angtajc3bS13cDY1
Cross-site scripting vulnerability in TinyMCEEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 4 years ago
Low
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5NmYtZmM3Yy05cjU1
Regex denial of service vulnerability in codesample pluginEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZydjgtdjR3OC1mOTVo
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: over 4 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3OHctMmd3Ny1nanYz
XSS in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
High
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3Z20tZ2hyOS00djk1
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 5 years ago
Statistics
Advisories: 20,668
Packages: 9,040
Repositories: 1
Ecosystems: 12
Packages: 9,040
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
31
directus
26
electron
26
@openzeppelin/contracts-upgradeable
21
@openzeppelin/contracts
20
next
18
sequelize
16
tinymce
16
ckeditor4
15
ghost
15
swagger-ui
14
joplin
14
angular
13
undici
13
strapi
13
vm2
12
nodebb
12
bootstrap
11
matrix-js-sdk
11
marked
11
tinymce/tinymce
11
handlebars
11
TinyMCE
11
nocodb
10
flowise
10
@strapi/strapi
9
@evershop/evershop
9
next-auth
9
bootstrap
9
twbs/bootstrap
9
org.webjars:bootstrap
9
bootstrap
9
serve
9
matrix-react-sdk
9
urijs
8
node-forge
8
systeminformation
8
npm
8
url-parse
8
jquery-rails
8
jquery
8
org.webjars.npm:jquery
8
validator
8
tar
8
matrix-appservice-irc
8
jsrsasign
8
steal
8
express-cart
8
editor.md
8
sanitize-html
7
org.webjars.npm:jquery-ui
7
snyk-broker
7
uptime-kuma
7
jquery-ui
7
elliptic
7
bootstrap-sass
7
lodash
7
bootstrap.sass
7
shescape
7
dompurify
7
hapi
7
vite
7
total.js
7
hermes-engine
7
jQuery.UI.Combined
7
jquery-ui-rails
7
jQuery
7
rsshub
6
@strapi/plugin-users-permissions
6
aaptjs
6
parse-url
6
bootstrap-sass
6
safe-eval
6
sweetalert2
5
yarn
5
lodash-es
5
axios
5
xlsx
5
@saltcorn/server
5
public
5
rendertron
5
mattermost-desktop
5
ws
5
lunary
5
mermaid
5
ejs
5
keystone
5
openpgp
5
vditor
5
ua-parser-js
5
mysql2
5
dojo
5
total4
5
mongoose
5
prismjs
5
@backstage/plugin-scaffolder-backend
4
engine.io
4
follow-redirects
4
auth0-js
4
jsonwebtoken
4
moment
4
simple-markdown
4
fast-xml-parser
4
simple-git
4
valine
4
@lobehub/chat
4
muhammara
4
hummus
4
qs
4
hono
4
safer-eval
4
@keystone-6/core
4
convert-svg-core
4
mongo-express
4
remarkable
4
vega
4
katex
4
materialize-css
4
apostrophe
4
glance
4
apollo-server-core
4
express
4
realms-shim
4
awsiotsdk
4
fastify
4
aws-iot-device-sdk-v2
4
meshcentral
4
auth0-lock
4
generator-jhipster
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
ecstatic
4
socket.io-file
3
json-pointer
3
@apollo/server
3
nuxt
3
bson
3
express-fileupload
3
xdLocalStorage
3
http-live-simulator
3
slpjs
3
layui
3
xmldom
3
dns-sync
3
@strapi/utils
3
nodemailer
3
grunt
3
feathers-sequelize
3
notevil
3
bin-links
3
node-opcua
3
subtext
3
@hapi/subtext
3
org.webjars.npm:xlsx
3
postcss
3
docsify
3
openmct
3
@soketi/soketi
3
n8n
3
snyk
3
@commercial/subtext
3
typeorm
3
mysql
3
send
3
jquery-validation
3
@sequelize/core
3
agnai
3
@builder.io/qwik
3
simplehttpserver
3
libxmljs
3
js-yaml
3
loader-utils
3
apollo-server
3
@backstage/techdocs-common
3
codecov
3
wrangler
3
@sveltejs/kit
3
@materializecss/materialize
3
yapi-vendor
3
@frangoteam/fuxa
3
highcharts
3
@uppy/companion
3
slp-validate
3
protobufjs
3
convict
3
dojox
3
dset
3
serialize-to-js
3
lodash.defaultsdeep
3
@strapi/plugin-content-manager
3
ses
3
localhost-now
3
passport-wsfed-saml2
3
object-path
3
socket.io-parser
3
@janhq/core
3
raneto
3
renovate
3
@ckeditor/ckeditor5-markdown-gfm
3
django-tinymce
3
node-jose
3
Filter by Repository