[wp-trac] [WordPress Trac] #47218: Update TinyMCE to 5.X.X or 6.X.X

[WordPress Trac]

#47218: Update TinyMCE to 5.X.X or 6.X.X
-------------------------+------------------------------
 Reporter:  Presskopp    |       Owner:  (none)
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  Awaiting Review
Component:  TinyMCE      |     Version:
 Severity:  normal       |  Resolution:
 Keywords:  2nd-opinion  |     Focuses:
-------------------------+------------------------------

Comment (by wpsalvio):

 Hello Team,

 we used retire.js to validate our solution based on WordPress 5.5.11 and
 it showed that the application uses an outdated version (4.9.10) of
 tinyMCE.

 As a best practice we always try to stay on (or near to) the latest
 version of any embedded libraries to ensure that the application has the
 most recent security patches.

 Are there plans to update TinyMCE to a more recent (ideally the latest)
 version?

 Is WordPress perhaps not affected by the vulnerabilities mentioned in the
 above posts?

 Please let me know your point of view and if I am better off with a custom
 remediation and just patch the library on my own.

 Best Regards to all and thanks for the brilliant work you do !

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/47218#comment:33>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform