DOM XSS
Simditor allows DOM XSS via an onload attribute within a malformed SVG element.
Advisories for Npm/Simditor package
2019
2018
Cross-site Scripting
Simditor allows XSS via crafted use of svg/onload=alert in a TEXTAREA element.
Simditor allows DOM XSS via an onload attribute within a malformed SVG element.
Simditor allows XSS via crafted use of svg/onload=alert in a TEXTAREA element.