ezsystems/ezplatform-richtext Security Advisories for v2.3.7 (2)
-
[HIGH] ezsystems/ezplatform-richtext allows access to external entities in XML
PKSA-w1xb-npn9-4xm1 GHSA-2jqj-5qv2-xvcg
Affected version: >=2.3.0-beta1,<2.3.26
Reported by:
GitHub -
[MEDIUM] XSS in richtext custom tag attributes in ezsystems/ezplatform-richtext
PKSA-4v1s-xft2-c6sn GHSA-fxwm-rx68-p5vx
Affected version: >=2.3.0,<2.3.7.1
Reported by:
GitHub