CVE-2024-53387 | umeditor 1.2.3 HTML Element HTML injection

Inserito da Angelo Barbosa | Mar 3, 2025 | CVE

A vulnerability classified as problematic has been found in umeditor 1.2.3. Affected is an unknown function of the component HTML Element Handler. The manipulation leads to HTML injection.

This vulnerability is traded as CVE-2024-53387. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-53387 | umeditor 1.2.3 HTML Element HTML injection

Post correlati

CVE-2023-41918 | Kiloview P1/P2 up to 4.8.2605 ACL missing authentication (NCSC-2024-0273)

CVE-2024-25980 | Moodle prior 4.3.3/4.1.9 H5P Attempts Report access control

CVE-2024-0754 | Mozilla Firefox up to 121 WASM Source File denial of service

CVE-2024-29010 | SonicWall GMS up to 9.3.4 Policy xml external entity reference (SNWLID-2024-0007)