cleantalk
Vulnerabilities and Security Researches

Ultimate TinyMCE, 00a2040ed21911627cb167da0c0200472755c1ae

CVE, Research URL

00a2040ed21911627cb167da0c0200472755c1ae

Home page URL

Security reports for Ultimate TinyMCE

Application

Ultimate TinyMCE

Published on
May 15, 2015
Research Description
Ultimate TinyMCE [ultimate-tinymce] < 3.6 (closed) WordPress TinyMCE Plugin <= 3.5 - Cross Site Scripting Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Update plugin.
Affected versions
Min -, max 3.6.
Status
vulnerable
Previous vulnerability researches
Ultimate TinyMCE (CVE-2024-8627) , Oct 31, 2024
Ultimate TinyMCE (CVE-2012-3414) , Jun 07, 2024
Ultimate TinyMCE (00a2040ed21911627cb167da0c0200472755c1ae) , Jun 07, 2024
New vulnerability
Additional Custom Emails for WooCommerce (CVE-2025-48251) , May 24, 2025
WP SMTP (CVE-2025-1123) , May 24, 2025
Bot for Telegram on WooCommerce (CVE-2025-48268) , May 24, 2025
WP Image Mask (CVE-2025-48235) , May 23, 2025
TablePress &#8211; Tables in WordPress made easy (CVE-2025-5096) , May 23, 2025