CVE-2017-14744

CVE-2017-14744

EPSS 0.6%

UEditor 1.4.3.3 has XSS via the SRC attribute of an IFRAME element.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.yuag.org/2017/09/19/ueditor%E5%82%A8%E5%AD%98%E5%9E%8Bxss%E6%BC%8F%E6%B4%9E/