Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2018-19048

Disclosure Date: May 13, 2019 (last updated November 27, 2024)
Simditor through 2.3.21 allows DOM XSS via an onload attribute within a malformed SVG element.
0
0
Attacker Value
Unknown

CVE-2018-6464

Disclosure Date: January 31, 2018 (last updated November 26, 2024)
Simditor v2.3.11 allows XSS via crafted use of svg/onload=alert in a TEXTAREA element, as demonstrated by Firefox 54.0.1.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0