Severity: medium (5.4)

First published: Thu Sep 14 2023

Last modified: Tue Sep 26 2023

CWE: 79

Froala Editor v4.0.1 to v4.1.1 was discovered to contain a cross-site scripting (XSS) vulnerability.

Any of

  • composer/froala/wysiwyg-editor
  • Froala Froala Editor


  • What is the vulnerability ID for Froala Editor?

    The vulnerability ID for Froala Editor is CVE-2023-41592.

  • What is the severity of CVE-2023-41592?

    The severity of CVE-2023-41592 is medium with a CVSS score of 5.4.

  • What is the affected software version range for Froala Editor?

    The affected software versions for Froala Editor range from 4.0.1 to 4.1.1.

  • What is the type of vulnerability in Froala Editor?

    The vulnerability in Froala Editor is a cross-site scripting (XSS) vulnerability.

  • What are some references for more information about the vulnerability?

    Some references for more information about the vulnerability include: [1] [2] [3]

SecAlerts Pty Ltd.
Fortitude Valley,
QLD 4006, Australia
© Copyright 2023 - ABN: 70 645 966 203, ACN: 645 966 203