MidnightBSD

Advisories for xheditor

CVE-2018-18909 MEDIUM

xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
xheditor xheditor 1.2.2