[wp-trac] [WordPress Trac] #47218: Update TinyMCE to 5.X.X or 6.X.X
WordPress Trac
noreply at wordpress.org
Wed Mar 29 16:28:28 UTC 2023
#47218: Update TinyMCE to 5.X.X or 6.X.X
-------------------------+------------------------------
Reporter: Presskopp | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: TinyMCE | Version:
Severity: normal | Resolution:
Keywords: 2nd-opinion | Focuses:
-------------------------+------------------------------
Comment (by wpsalvio):
Hello @azaozz ! The TinyMCE version embedded in WordPress is affected by
these two CVEs.
https://nvd.nist.gov/vuln/detail/CVE-2020-12648
https://nvd.nist.gov/vuln/detail/CVE-2022-23494
Does this means that also WordPress is affected or the way you use the
library prevents these from happening?
Thank you!
--
Ticket URL: <https://core.trac.wordpress.org/ticket/47218#comment:34>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list