cleantalk
Vulnerabilities and Security Researches

TinyMCE and TinyMCE Advanced Professsional Formats and Styles, CVE-2024-25904

CVE, Research URL

CVE-2024-25904

Home page URL

Security reports for TinyMCE and TinyMCE Advanced Professsional Formats and Styles

Application

TinyMCE and TinyMCE Advanced Professsional Formats and Styles

Published on
Feb 21, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in David Stockl TinyMCE and TinyMCE Advanced Professsional Formats and Styles.This issue affects TinyMCE and TinyMCE Advanced Professsional Formats and Styles: from n/a through 1.1.2.
Affected versions
max 1.1.2.
Status
vulnerable
Previous vulnerability researches
TinyMCE and TinyMCE Advanced Professsional Formats and Styles (CVE-2024-25904) , Jun 07, 2024
New vulnerability
LMS by Masteriyo – WordPress Learning Management System, eLearning Platform, Online Education System & Online Course (CVE-2026-42743) , Jun 05, 2026
Printeers Print & Ship (CVE-2025-52766) , Jun 05, 2026
Support Ticket (CVE-2025-69179) , Jun 05, 2026
SP Project & Document Manager (CVE-2026-10737) , Jun 05, 2026
EmergencyWP – Dead Man's switch & legacy deliverance (CVE-2026-9732) , Jun 04, 2026