← Back to CVE List
CVE-2018-18909
Published:
2018-11-03T16:29Z
Last Modified:
2024-11-21T03:56Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
xhEditor 1.2.2 allows XSS via JavaScript code in the SRC attribute of an IFRAME element within the editor's source-code view. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt