CVE-2022-25037 Information

Description

An issue in wanEditor v4.7.11 and fixed in v.4.7.12 and v.5 was discovered to contain a cross-site scripting (XSS) vulnerability via the image upload function.

Reference

https://github.com/wangeditor-team/wangEditor/issues/3870 https://gist.github.com/Mdxjj/5cf0a31e8abf24ed688ceb5b3543516d