Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
npm tinymce Security Advisories
Loading...
Moderate
Ecosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 1 month ago
GSA_kwCzR0hTQS05aGN2LWo5cHYtcW1waM4AA9LE
TinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp optionEcosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 1 month ago
Moderate
Ecosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 1 month ago
GSA_kwCzR0hTQS13OWp4LTRnNmctcnA3eM4AA9LD
TinyMCE Cross-Site Scripting (XSS) vulnerability using noscript elementsEcosystems: pypi, packagist, nuget, npm
Packages: django-tinymce, tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: about 1 month ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 4 months ago
GSA_kwCzR0hTQS00MzhjLTM5NzUtNXgzZs4AA6Te
TinyMCE Cross-Site Scripting (XSS) vulnerability in handling iframesEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 4 months ago
Moderate
Ecosystems: nuget, npm, packagist
Packages: TinyMCE, tinymce, tinymce/tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 4 months ago
GSA_kwCzR0hTQS01MzU5LXB2ZjItcHc3OM4AA6Td
TinyMCE Cross-Site Scripting (XSS) vulnerability in handling external SVG files through Object or Embed elementsEcosystems: nuget, npm, packagist
Packages: TinyMCE, tinymce, tinymce/tinymce
Source: GitHub Advisory Database
Blast Radius: 30.8
Published: 4 months ago
Moderate
Ecosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 8 months ago
GSA_kwCzR0hTQS12NjI2LXI3NzQtajdmOM4AA3Mj
TinyMCE vulnerable to mutation Cross-site Scripting via special characters in unescaped text nodesEcosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 8 months ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 9 months ago
GSA_kwCzR0hTQS1oZ3F4LXIyaHAtanIzOM4AA2kG
TinyMCE XSS vulnerability in notificationManager.open APIEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 9 months ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 9 months ago
GSA_kwCzR0hTQS12NjVyLXAzdnYtampmds4AA2kF
TinyMCE mXSS vulnerability in undo/redo, getContent API, resetContent API, and Autosave pluginEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: 9 months ago
Moderate
Ecosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: over 1 year ago
GSA_kwCzR0hTQS1nZzhyLXhqd3EtNHc5Ms4AAwOk
Cross-site scripting vulnerability in TinyMCE alertsEcosystems: nuget, packagist, npm
Packages: TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 38.4
Published: over 1 year ago
Moderate
Ecosystems: pypi, nuget, packagist, npm
Packages: django-tinymce, TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: over 2 years ago
GSA_kwCzR0hTQS1yOGhtLXc1Zjctd2ozOc0Wzg
Cross-site scripting vulnerability in TinyMCE pluginsEcosystems: pypi, nuget, packagist, npm
Packages: django-tinymce, TinyMCE, tinymce/tinymce, tinymce
Source: GitHub Advisory Database
Blast Radius: 64.7
Published: over 2 years ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: almost 3 years ago
GSA_kwCzR0hTQS01aDlnLXg1cnYtMjV3Z80WrQ
Cross-site scripting vulnerability in TinyMCEEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 43.2
Published: almost 3 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV2bTgtaGhnci1qY2pw
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Moderate
Ecosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXc3angtajc3bS13cDY1
Cross-site scripting vulnerability in TinyMCEEcosystems: packagist, nuget, npm
Packages: tinymce/tinymce, TinyMCE, tinymce
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg5NmYtZmM3Yy05cjU1
Regex denial of service vulnerability in codesample pluginEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: almost 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZydjgtdjR3OC1mOTVo
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 25.0
Published: almost 4 years ago
Moderate
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM3OHctMmd3Ny1nanYz
XSS in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 4 years ago
High
Ecosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI3Z20tZ2hyOS00djk1
Cross-site scripting vulnerability in TinyMCEEcosystems: npm
Packages: tinymce
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 4 years ago
Statistics
Advisories: 19,584
Packages: 8,642
Repositories: 1
Ecosystems: 12
Packages: 8,642
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
parse-server
30
electron
26
@openzeppelin/contracts-upgradeable
21
directus
21
@openzeppelin/contracts
20
tinymce
16
sequelize
16
next
16
ghost
14
swagger-ui
14
joplin
13
undici
13
ckeditor4
13
strapi
13
vm2
12
angular
11
TinyMCE
11
handlebars
11
tinymce/tinymce
11
marked
11
nodebb
11
nocodb
10
@evershop/evershop
9
serve
9
next-auth
9
steal
8
tar
8
node-forge
8
urijs
8
bootstrap
8
express-cart
8
jsrsasign
8
url-parse
8
npm
8
matrix-appservice-irc
8
matrix-js-sdk
8
@strapi/strapi
8
validator
8
editor.md
8
systeminformation
8
org.webjars.npm:jquery
8
jquery-rails
8
jquery
8
snyk-broker
7
hermes-engine
7
jQuery
7
shescape
7
uptime-kuma
7
total.js
7
lodash
7
matrix-react-sdk
7
sanitize-html
7
jquery-ui
7
jquery-ui-rails
7
org.webjars.npm:jquery-ui
7
jQuery.UI.Combined
7
hapi
7
@strapi/plugin-users-permissions
6
rsshub
6
safe-eval
6
aaptjs
6
parse-url
6
openpgp
5
mysql2
5
keystone
5
prismjs
5
rendertron
5
ws
5
total4
5
dojo
5
lodash-es
5
ejs
5
sweetalert2
5
yarn
5
mongoose
5
ua-parser-js
5
vite
5
vditor
5
xlsx
5
public
5
apostrophe
4
dompurify
4
katex
4
simple-markdown
4
materialize-css
4
remarkable
4
safer-eval
4
follow-redirects
4
jsonwebtoken
4
auth0-js
4
muhammara
4
hummus
4
vega
4
moment
4
@keystone-6/core
4
qs
4
apollo-server-core
4
engine.io
4
awsiotsdk
4
aws-iot-device-sdk-v2
4
mermaid
4
convert-svg-core
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
axios
4
ecstatic
4
realms-shim
4
glance
4
valine
4
fastify
4
auth0-lock
4
generator-jhipster
4
simple-git
4
meshcentral
4
@backstage/plugin-scaffolder-backend
4
mongo-express
4
tough-cookie
3
node-opcua
3
django-tinymce
3
code-server
3
n8n
3
locutus
3
@sequelize/core
3
node-red-dashboard
3
passport-wsfed-saml2
3
keycloak-connect
3
uap-core
3
http-live-simulator
3
apollo-server
3
xmldom
3
jquery-validation
3
protobufjs
3
@backstage/techdocs-common
3
object-path
3
node-ipc
3
socket.io-parser
3
@strapi/utils
3
mathjs
3
socket.io
3
loader-utils
3
js-yaml
3
grunt
3
m-server
3
dns-sync
3
nodemailer
3
feathers-sequelize
3
jspdf
3
org.webjars.npm:xlsx
3
node-jose
3
jointjs
3
mysql
3
codecov
3
@cubejs-backend/api-gateway
3
slp-validate
3
postcss
3
notevil
3
ses
3
@strapi/plugin-content-manager
3
blamer
3
@commercial/subtext
3
renovate
3
openmct
3
sails
3
@materializecss/materialize
3
convict
3
node-fetch
3
json-ptr
3
bootstrap
3
highcharts
3
slpjs
3
lodash.defaultsdeep
3
@uppy/companion
3
ids-enterprise
3
nadesiko3
3
socket.io-file
3
parsel
3
@janhq/core
3
@jmondi/url-to-png
3
froala-editor
3
libxmljs
3
@sveltejs/kit
3
localhost-now
3
jose-node-esm-runtime
3
jose-node-cjs-runtime
3
docsify
3
braces
3
simplehttpserver
3
dojox
3
mixme
3
snyk
3
bson
3
serialize-to-js
3
@lobehub/chat
3
wrangler
3
@ckeditor/ckeditor5-markdown-gfm
3
immer
3
json-pointer
3
@apollo/server
3
bin-links
3
xdLocalStorage
3
yapi-vendor
3
Filter by Repository