Packagist (Composer) package
ibexa/fieldtype-richtext
pkg:composer/ibexa/fieldtype-richtext
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-43369 | Hig | 7.2 | >= 4.6.0, < 4.6.10 | 4.6.10 | Aug 16, 2024 | Ibexa RichText Field Type is a Field Type for supporting rich formatted text stored in a structured XML format. In versions on the 4.6 branch prior to 4.6.10, the validator for the RichText fieldtype blocklists `javascript:` and `vbscript:` in links to prevent XSS. This can leave |
- affected >= 4.6.0, < 4.6.10fixed 4.6.10
Ibexa RichText Field Type is a Field Type for supporting rich formatted text stored in a structured XML format. In versions on the 4.6 branch prior to 4.6.10, the validator for the RichText fieldtype blocklists `javascript:` and `vbscript:` in links to prevent XSS. This can leave